PAM Engineer (BeyondTrust) - PAME25-23029


IT - NY - New York, NY
New York, New York
Locations: New York, Buffalo, New Rochelle, White Plains

Last Day to Apply: May 22, 2025
Pay: $90.00 to $95.00 per hour

Job Title: PAM Engineer (BeyondTrust)
Location: New York, NY 10003 (Hybrid)
Duration: 3–6–12 months with potential extensions
Pay Rate: $95/hr

Job Summary:

We are seeking a skilled PAM Engineer with experience implementing and supporting BeyondTrust and other Privileged Access Management (PAM) solutions. The ideal candidate will collaborate closely with IT teams to integrate PAM solutions with enterprise systems, ensure adherence to security best practices, and optimize access management processes across the organization.

Responsibilities:

  • Collaborate with technical teams to integrate PAM solutions into enterprise infrastructure.

  • Provide strategic guidance on access management technologies to various units and departments.

  • Identify opportunities to improve security and streamline access workflows through system integrations.

  • Onboard Windows and Linux servers to PAM platforms, ensuring configurations follow least privilege and security best practices.

  • Manage onboarding of privileged accounts and ensure proper access policies are enforced.

  • Develop and maintain integration scripts using Python and PowerShell to connect BeyondTrust Password Safe with internal systems via API.

  • Troubleshoot and resolve issues related to PAM integrations with Active Directory, LDAP, and endpoint systems.

  • Support implementation of secure authentication protocols including SAML, OAuth2, OIDC, and Kerberos within the PAM environment.

Required Skills and Experience:

  • Strong experience with PAM tools such as BeyondTrust, CyberArk, or similar.

  • In-depth knowledge of privileged credential vaulting, session management, and access control policy enforcement.

  • Hands-on experience onboarding systems and accounts, configuring access policies, and managing PAM lifecycle activities.

  • Expertise in scripting and automation using Python and PowerShell, particularly for API integrations.

  • Proficient in Active Directory and LDAP, with demonstrated experience in user and directory management.

  • Solid understanding and practical experience with authentication protocols: SAML, OAuth2, OIDC, Kerberos.

  • Strong troubleshooting skills and the ability to resolve complex integration issues in hybrid environments.

Skip to the main content