Job Description
Job Title: Privileged Access Management - Beyond Trust Engineer (Only W2)
Duration: 6 months (Potential of conversion to FTE)
Location: Seattle, WA (Hybrid)
***********************(Only W2)***********************(Only W2)***********************(Only W2)
Description:
- PAM Platform Leadership: Serve as the primary technical expert for privileged access management solutions, including architecture, deployment, configuration, and optimization of password vaults and endpoint privilege management systems
- Enterprise PAM Implementation: Design and execute large-scale PAM deployments across Windows, macOS, and Linux environments, ensuring seamless integration with existing infrastructure
- Policy Development & Management: Create and maintain privilege elevation policies, credential rotation schedules, access request workflows, and governance rules aligned with security and compliance requirements
- Integration & Automation: Integrate PAM solutions with ITSM platforms, SIEM tools, vulnerability scanners, directory services, and other security infrastructure to create comprehensive privileged access workflows
- Troubleshooting & Support: Provide expert-level technical support for PAM platform issues, performance optimization, privileged account onboarding, and user access requests
- Security & Compliance: Ensure PAM implementations meet PCI DSS, and other requirements through proper audit trails, session recording and monitoring, and privileged account governance
- Documentation & Training: Develop technical documentation, procedures, and training materials for internal teams and end users
- Continuous Improvement: Monitor platform performance, evaluate new features, and implement best practices to enhance security posture and operational efficiency
Required Experience:
- 4-6+ years of hands-on experience implementing and managing enterprise PAM platforms such as CyberArk, BeyondTrust, Delinea (Thycotic) in large-scale environments
- Vendor certifications in one or more major PAM platforms (CyberArk Certified Delivery Engineer, BeyondTrust Certified Implementation Engineer, Delinea certified professional, etc.) preferred
- Deep expertise in privileged account discovery, credential management, password rotation, session management, and access request workflows using enterprise PAM solutions
- Strong understanding of Windows Server administration, Active Directory, Group Policy, and PowerShell scripting
- Experience with Linux/Unix system administration and shell scripting for cross-platform PAM deployments
- Knowledge of networking fundamentals including protocols, ports, certificates, load balancing, and security hardening
- Experience with cloud platforms (AWS, Azure) and containerization technologies (Docker, Kubernetes)
- Understanding of identity and access protocols (SAML, OIDC, OAuth, SCIM, LDAP) and their integration with PAM solutions