Lead the development and execution of the enterprise Privileged Access Management (PAM) strategy, focusing on identifying and mitigating risks tied to high-privilege accounts. Guide the expansion of automated processes across discovery, access provisioning, and de-provisioning in cloud, database, and infrastructure environments.
What You'll Do
- Define and advance the long-term roadmap for PAM capabilities, emphasizing risk-tiered remediation and governance improvements.
- Oversee the deployment and adoption of features such as credential lifecycle automation, session monitoring, and behavioral analytics.
- Integrate PAM systems with IT service management (ITSM) platforms and security tooling to enable event correlation, automated workflows, and operational efficiency.
- Establish control policies aligned with compliance requirements and audit expectations, ensuring traceability and accountability.
- Collaborate with Identity & Access Management (IAM) governance, Security Operations, and Audit teams to align priorities and report on program performance.
- Guide cross-functional teams through influence, setting strategic direction and removing delivery obstacles without direct reporting lines.
- Support the professional growth of analysts through coaching, skill development, and process standardization.
Requirements
- Minimum of 10 years in cybersecurity with demonstrated expertise in Identity & Access Management (IAM), including PAM, MFA, SSO, RBAC, or directory governance.
- Proven experience leading complex, multi-stakeholder technology initiatives from concept to delivery.
- Strong background in Agile/Scrum practices, including backlog management, user story creation, and blocker resolution.
- Hands-on experience configuring and using ITSM platforms for incident, change, and problem management workflows.
- Ability to translate business and security requirements into technical deliverables and operational processes.
- Legal authorization to work in the U.S., with willingness to complete a background check, fingerprinting, and drug screening.
- Must meet eligibility requirements under Section 19 of the Federal Deposit Insurance Act.
- High school diploma or equivalent required; must be at least 18 years old.
Preferred Qualifications
- Deep technical knowledge of privileged credential lifecycle controls, anomaly detection, and session recording technologies.
- Experience implementing dual-control workflows integrated with change and incident management processes.
- Strong communication skills with the ability to present metrics and influence senior stakeholders across security and compliance functions.
- Flexibility to travel as needed for business purposes.
Benefits
- Hybrid work model with options to work remotely or on-site near designated Hubs.
- Eligibility for annual performance-based bonus tied to individual and company results.
- Access to career development tools and technology resources.
- Inclusive environment supported by active Employee Resource Groups (ERGs).
- Supportive leadership culture that values diverse perspectives and professional growth.
- Reasonable accommodations available for applicants and employees with disabilities.