(PAM) Specialist

Employment type contract

Job Title (PAM) Specialist

Job Location US EST remote

Duration 6 month contract

Experience level -10+

Mandatory Skills .Information Security, with focused on PAM., CyberArk or BeyondTrust (e.g., PSM, CPM, PVWA, PTA, EPM, Password Safe). PAM concepts, Active Directory, LDAP, RDP/SSH, Windows/Unix systems, and cloud environments (AWS, Azure, Google Cloud Platform). integrating PAM with IAM tools, SIEM platforms, and ticketing systems, Strong scripting skills (PowerShell, Python, Bash, etc.) for automation and integration, security frameworks and regulatory standards (e.g., NIST, ISO 27001, CIS Controls, SOX) etc.

Job Description

We are looking for a Senior Privileged Access Management (PAM) Specialist to lead the design, deployment, and ongoing support of our PAM infrastructure. The ideal candidate will have strong hands-on experience with CyberArk or BeyondTrust and a deep understanding of best practices in privileged access security. This role is critical to protecting sensitive assets, ensuring regulatory compliance, and reducing the organization's overall risk exposure.

Key Responsibilities:

• Lead the implementation and configuration of PAM solutions (preferably CyberArk or BeyondTrust) across on-prem and cloud environments.
• Design, deploy, and manage vaulting, session management, credential rotation, and privileged task automation.
• Define and enforce PAM policies, including least privilege, just-in-time access, and session monitoring.
• Collaborate with infrastructure, application, and cloud teams to onboard privileged accounts and manage secure access workflows.
• Perform health checks, upgrades, and maintenance of PAM platforms, ensuring high availability and resilience.
• Integrate PAM with SIEM, ITSM, IAM, and other security tools to enable centralized monitoring and response.
• Drive compliance efforts by producing detailed access reports and facilitating audits (SOX, HIPAA, PCI, etc.).
• Analyze access patterns and implement controls to minimize attack surface and prevent lateral movement.
• Develop technical documentation, playbooks, and training for internal teams.
• Act as a PAM SME and provide mentorship to junior staff and cross-functional stakeholders.

Required Qualifications:

• 10+ years of experience in Information Security, with 3+ years focused on PAM.
• Hands-on experience with CyberArk or BeyondTrust (e.g., PSM, CPM, PVWA, PTA, EPM, Password Safe).
• Strong understanding of PAM concepts: vaulting, session management, least privilege, JIT, credential rotation.
• Familiarity with Active Directory, LDAP, RDP/SSH, Windows/Unix systems, and cloud environments (AWS, Azure, Google Cloud Platform).
• Experience integrating PAM with IAM tools, SIEM platforms, and ticketing systems.
• Strong scripting skills (PowerShell, Python, Bash, etc.) for automation and integration.
• Solid knowledge of security frameworks and regulatory standards (e.g., NIST, ISO 27001, CIS Controls, SOX).

Preferred Qualifications:

• CyberArk or BeyondTrust certifications (e.g., CyberArk Trustee, Defender, Sentry; BeyondTrust Certified Admin).
• Experience with cloud-native PAM solutions or containerized environments.
• Exposure to DevOps tools and CI/CD pipelines.

Experience in regulated industries (financial services, healthcare, government

Tekshapers is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.