Lead PAM Engineer

The Privileged Access Management (PAM) Lead Engineer is responsible for the overall strategy, planning, development, architecture & support of the client's PAM solution and its associated processes.

Required Experience:

7

+ Years
Job Locations:

Chicago, IL

Location Restrictions:

Onsite

Basic Qualifications and

The Privileged Access Management (PAM) Lead Engineer is responsible for the overall strategy, planning, development, architecture & support of the client's PAM solution and its associated processes. The individual in this role will provide overall implementation and direction into the IAM and PAM functions across the organization, including federation, privileged access management, authentication & authorization, security and provisioning identity data. The Lead PAM Engineer will work closely with the IT Security, service desk, systems engineering, network security, audit, application developers and other administrators in creating functional, scalable and secure PAM operations, as well as the design and development of new business applications. The role is also responsible to identify, evaluate and participate in decision making around new and emerging IAM/PAM technologies and support other Information Security areas as needed.

Responsibilities
  • Establish relationships with both technical and business leaders in order to advance the adoption of the PAM program.
  • Work with PAM technical team to implement and automate PAM processes.
  • Provide expert level guidance across the enterprise for all information security technologies with focus on Privileged Access Management, assuring compliance with TransUnion policies, standards and procedures.
  • Establish and maintain Privileged Access Management (PAM) Security Strategy including provisioning, password management, access policies, SSH key management, API key management and reporting.
  • Design, configure, and maintain BeyondTrust’s Password Safe and Powerbroker agents for Linux and Windows tools.
  • Integrate BeyondTrust’s PAM solution with ServiceNow, Exchange, RSA SecureID, Puppet/SCCM/DSC (for agent deployment and configuration), and Splunk.
  • Provide expert level security consultation on internal projects focusing on business needs, security’s role in change management, and how data is transmitted internally and externally.
  • Evaluate and monitor project efforts, timelines, and task management.  Partner with internal business units to ensure projects remain on target, within budget, and are completed according to internal policies and security standards.

Required Skills and Experience
  • 7+ years' Information Security experience with at least 3 of those years focused on Privileged Access Management.
  • Experience in designing and implementing Privileged Access Management (PAM) solutions such as (BeyondTrust, CyberArk, Lieberman, CA/Xceedium) for enterprise organizations.
  • Experience with password safe tools such as BeyondTrust Password safe and Powerbroker for both Windows and Linux environments.
  • Privileged Access Management Processes including on-boarding, account management, password rotation, password safe policies, and PBUL/PBW policies.
  • Experience with databases, LDAP and directory services, application servers, operating systems and network infrastructure.
  • Hands-on Java, Pearl, C# programming experience.
  • Ability to solve complex problems while effectively communicating technical concepts.
  • Ability and desire to learn new technologies and processes.
  • Strong understanding of Identity Lifecycle in regard to privileged accounts and how people use accounts.
  • Working knowledge of various security tools.

Interested in this position?
Fill out the form below!