Job Description
The PAM Engineer is responsible for designing, implementing, and supporting the organization’s Privileged Access Management program, with a focus on the CyberArk platform. This role serves as the SME for PAM, driving platform maturity, security, and scalability while partnering closely with application, infrastructure, and security teams to onboard systems and enforce privileged access controls.
Day‑to‑Day Responsibilities
• Act as the SME for CyberArk PAM, managing configuration, administration, and ongoing platform support
• Gather requirements from application and engineering teams and lead onboarding of accounts and systems into CyberArk
• Perform integration assessments and recommend solutions for privileged access onboarding
• Analyze the existing PAM environment and drive continuous improvement initiatives
• Partner with DevOps, infrastructure, and security teams to enforce PAM standards and best practices
• Develop and maintain architecture, design, and implementation documentation
• Support internal and external audits, addressing any gaps in PAM controls
• Manage performance monitoring, capacity planning, and disaster recovery for PAM systems
• Maintain and enhance security policies, standards, and procedures related to privileged access
• Provide end-user documentation and training for PAM tools and processes
• Stay current on IAM/PAM trends, technologies, and emerging threats
Participate in vendor discussions and technical evaluations
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.
Required Skills & Experience
• 8+ years in IT/cybersecurity; 4+ years in PAM
• 3+ years hands-on CyberArk (Privileged Cloud)
○ Experience with:
§ Account/safe management, admin, configuration, troubleshooting
§ IAM in hybrid cloud environments
§ Secrets management / SSH key vaulting
§ Application onboarding & integrations into PAM
Strong security controls, compliance, and troubleshooting skills
Nice to Have Skills & Experience
• CyberArk certification
• Financial services experience
• Exposure to DevOps / infrastructure teams
Audit, governance, or security architecture experience
Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.