Privileged Access Management (PAM) Engineer
HRUCKUS · New York, NY · 4 days ago
Engineering$80–$85/hrFull-time
Position Description
The Privileged Access Management (PAM) Engineer will combine expertise in identity security, privileged access management, cloud technologies, and AI-enabled engineering to build secure, scalable, and compliant solutions for a large enterprise environment.
Position Responsibilities
- Design, implement, and support enterprise Privileged Access Management solutions
- Build secure AI-enabled automation for identity and security operations
- Integrate AI solutions with enterprise identity, monitoring, and security platforms
- Develop secure access controls for privileged, service, and machine identities
- Support AI governance, monitoring, and security best practices
- Collaborate with cybersecurity, IAM, cloud, infrastructure, application, and audit teams
- Improve automation, operational efficiency, and security across enterprise platforms
- Ensure AI-enabled solutions are secure, explainable, auditable, and compliant
Required Qualifications
- Bachelor's degree in Computer Science, Cybersecurity, Information Technology, Engineering, or equivalent professional experience
- Hands-on experience with enterprise PAM platforms such as CyberArk, BeyondTrust, Delinea, or One Identity
- Strong understanding of privileged access, service accounts, non-human identities, least privilege, RBAC, Just-in-Time (JIT) access, and session management
- Experience implementing privileged access governance and security controls
- Experience building or supporting AI, LLM, automation, or platform engineering solutions
- Knowledge of prompt engineering, model evaluation, hallucination mitigation, drift monitoring, and grounding techniques
- Experience with agent frameworks, orchestration, and multi-agent workflows
- Experience integrating AI solutions with enterprise identity, security, monitoring, and compliance platforms
- Strong understanding of secure software development, cloud-native architectures, APIs, distributed systems, and modern MLOps/LLMOps practices
- Experience supporting production environments in regulated enterprises
Desired Qualifications
- AI governance, model controls, guardrails, and audit frameworks (NIST AI RMF, OWASP Top 10 for LLM Applications, MITRE ATLAS, or ISO)
- Hybrid cloud architecture experience
- Experience securing machine identities and non-human identities
- Experience remediating privileged access risks and hardcoded credentials
- Audit, compliance, and regulatory support experience
- Financial services or other highly regulated industry experience
- CyberArk Defender or Sentry Certifications
- BeyondTrust, Delinea, or One Identity certifications
- Cloud certifications (AWS or Azure)
- Security certifications such as CISSP, Security+, or similar
- AI, machine learning, or cloud security certifications