Privileged Access Management (PAM) Engineer - CyberArk Specialist

Privileged Access Management (PAM) Engineer - CyberArk Specialist

Job Description

[Up to c. $180k Comp Package | Hybrid Working]

Role Overview

We’re supporting a global financial institution as it scales its identity security capability. This role sits within a growing IAM function, focused on strengthening control over privileged access across a complex, hybrid estate. It’s a hands-on engineering position centred on Privileged Access Management, with a strong focus on CyberArk. You’ll play a key role in securing critical accounts, driving automation, and ensuring privileged access is tightly controlled, auditable, and aligned with regulatory standards...

Key Responsibilities

• Build and enhance privileged access controls across enterprise systems, with CyberArk as the core platform
• Administer and optimise the main components of the PAM environment, ensuring stable and secure day-to-day operation
• Bring privileged, shared, and service accounts under management, including discovery, validation, vaulting, and controlled rotation
• Coordinate with application and infrastructure owners to make sure credential changes do not disrupt production services
• Strengthen credential governance by improving rotation, reconciliation, and exception-handling processes
• Enable secure privileged access workflows, including monitored and controlled session usage for high-risk accounts
• Investigate and resolve platform issues, including access failures, password management errors, and connector-related problems
• Produce and maintain operational guides, support procedures, and technical documentation for PAM processes
• Deliver reporting and evidence required for internal reviews, regulatory checks, and access recertification exercises
• Connect the PAM platform with surrounding enterprise tooling such as directories, IAM systems, ITSM workflows, and application interfaces
• Develop scripts and lightweight automation to reduce manual effort across onboarding, maintenance, and control validation
• Act as a trusted PAM subject-matter expert for security, infrastructure, and application teams

What You’ll Bring…

• 6-10 years’ experience in IAM, security engineering, or infrastructure security roles
• Minimum 3+ years’ hands-on CyberArk experience
• Strong understanding of privileged account onboarding, lifecycle management, and access controls
• Experience implementing password vaulting, rotation, and session management solutions
• Familiarity with enterprise environments across Windows, Linux/Unix, and application/service accounts
• Experience integrating PAM with tools such as Active Directory, IAM platforms, and ITSM systems
• Understanding of regulatory and security frameworks (e.g. SOX, NIST, internal audit controls)
• Scripting or automation exposure (PowerShell, Python or similar)
• Strong troubleshooting and problem-solving capabilities across complex environments
• (Preferred) Exposure to cloud-based PAM use cases (AWS, Azure, GCP)
• (Preferred) Experience working in financial services or other regulated industries

...

Apply for this role

All fields marked with * are required.