CrawlJobs Logo

IAM - Privileged Access Management Principal

https://www.hpe.com/ Logo

Hewlett Packard Enterprise

Location Icon

Location:
United States , Houston

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Employment contract

Salary Icon

Salary:

117500.00 - 270000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

Principal PAM Architect to lead the strategy, architecture, design, and implementation of enterprise-wide Privileged Access Management (PAM) solutions. This role is critical in securing privileged access across both on-premises and cloud environments, driving adoption of Zero Trust principles, and ensuring scalable, resilient, and compliant privileged access solutions.

Job Responsibility:

  • Define PAM strategy, roadmap, and reference architectures aligned to enterprise security and compliance requirements
  • Design and implement scalable PAM solutions for large, complex environments across on-prem, hybrid, and multi-cloud infrastructures
  • Incorporate Zero Trust, Just-in-Time (JIT), and Just Enough Access (JEA) models into PAM solutions
  • Lead the enterprise rollout and lifecycle management of CyberArk Privileged Cloud and related modules
  • Implement and manage privileged session monitoring, endpoint privilege management (EPM), and application-to-application password management
  • Drive integration of PAM with identity providers, SIEM/SOAR, ITSM, and DevOps pipelines
  • Establish and enforce policies for privileged access governance, auditing, and regulatory compliance
  • Conduct regular reviews of PAM controls to prevent credential theft, lateral movement, and unauthorized access
  • Act as the PAM subject matter expert (SME), advising executives, architects, and engineering teams on privileged access security
  • Mentor and guide engineering teams on PAM best practices and secure operations

Requirements:

  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field (or equivalent experience)
  • 8+ years in cybersecurity or IT with demonstrated hands-on PAM specific experience in enterprise-scale environments
  • Proven experience in architecture, design, and implementation of PAM solutions across large, complex enterprises
  • Deep technical expertise with CyberArk (Privileged Cloud and on-prem)
  • Strong knowledge of Zero Trust principles, JIT/JEA access models, and privileged identity lifecycle management
  • Experience integrating PAM with cloud platforms (Azure, AWS, GCP), DevOps pipelines, and enterprise IT ecosystems
  • Experience with secrets management platforms (CyberArk Conjur, HashiCorp Vault, AWS Secrets Manager, etc.)
  • Working knowledge of modern authentication standards (SAML, OIDC, FIDO2, MFA, passwordless)
  • Hands-on expertise with Windows, Linux, Active Directory, and cloud IAM models
  • Good understanding of the privilege access models of Active Directory, Azure/Entra ID, AWS and GCP
  • Cybersecurity certifications (CISSP, CISM, CISA, CyberArk Defender/Sentry/Guardian) highly desirable
  • Strong communication and leadership skills to influence executives and technical teams

Nice to have:

  • Cybersecurity certifications (CISSP, CISM, CISA, CyberArk Defender/Sentry/Guardian)
  • Experience with HashiCorp Vault
  • AWS Secrets Manager
What we offer:
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Comprehensive benefits suite supporting physical, financial and emotional wellbeing

Additional Information:

Job Posted:
October 08, 2025

Employment Type:
Fulltime
Work Type:
On-site work
Icon
Hewlett Packard Enterprise - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon
PREMIUM
More languages and countries
+ Unlock 31694 hidden job offers
Languages
English Čeština Deutsch Ελληνικά Español Français +15
Countries
United States United Kingdom India Canada Australia +
See plans
Plans from $2.99 / month

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for IAM - Privileged Access Management Principal

Principal IAM Engineer

The IAM Principal Engineer is responsible for driving the development, maintenan...
Location
Location
United States , Mount Laurel
Salary
Salary:
142361.11 - 213541.67 USD / Year
comcastcorporation.com Logo
Comcast
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Over 10 years of experience implementing SailPoint IdentityIQ
  • More than 5 years of experience designing, architecting, implementing, operating, and maintaining Radiant Logic Virtual Directory Service (VDS), including Federated Identity Management (FIM) and Identity Correlation and Synchronization (ICS)
  • Skilled in integrating data sources and applications into VDS, configuring data access views and permissions, and performing identity correlation and synchronization
  • Strong knowledge of LDAP, Active Directory services, Multi-Factor Authentication (MFA), risk-based authentication, and privileged access management
  • Deep understanding of Identity and Access Management (IAM) across authentication, authorization, endpoint security, network security, and policy engines
  • Technical expertise with Microsoft MFA, SailPoint, CyberArk, ForgeRock, Okta, Ping Identity, Active Directory, Azure Active Directory, AWS, Google Cloud Platform, Microsoft Azure, and cross-domain IDM integrations
  • Solid grasp of cloud identity concepts and hands-on experience with Azure AD and other cloud environments
  • 3–5+ years of experience developing workflows, forms, connector configurations, provisioning policies, and rules within SailPoint IdentityIQ
  • Quick learner with the ability to adopt new technologies and collaborate effectively to capture and implement business system requirements
  • Proficient in source control and development tools such as GitHub and Eclipse
Job Responsibility
Job Responsibility
  • Apply your expertise in SailPoint IdentityIQ and Radiant One FID / Global Sync to enhance and expand the capabilities of the enterprise IAM platform
  • Collaborate with Agile teams to design, build, test, and support scalable IAM solutions that meet foundational enterprise needs, including identity federation, directory virtualization, and multi-source synchronization
  • Contribute innovative and efficient configuration and coding solutions in SailPoint IdentityIQ and Radiant One FID environments that differentiate the IAM platform
  • Engineer cost-effective technical solutions leveraging Radiant One FID and Global Sync to address business challenges and streamline identity and access processes
  • Develop both tactical and strategic IAM solutions aligned with evolving business requirements, including federated identity management and synchronized directory services
  • Partner with key stakeholders to gather and validate requirements, ensuring delivered solutions meet expectations across SailPoint IdentityIQ and Radiant One FID systems
  • Participate in project teams to design new system capabilities, including proof-of-concept (POC) implementations for both Radiant One FID and SailPoint IdentityIQ, and presentations that highlight their functionality
  • Deploy and manage Radiant One FID in Kubernetes environments using Helm charts, ensuring scalable, reproducible, and reliable containerized deployments
  • Support the end-to-end testing lifecycle for system changes, including integrations with Radiant One FID / Global Sync, from design through execution
  • Create proactive capacity forecasts to prevent outages and ensure system reliability for SailPoint IdentityIQ and Radiant One FID services
What we offer
What we offer
  • Paid Time off
  • Physical Wellbeing benefits
  • Financial Wellbeing benefits
  • Emotional Wellbeing benefits
  • Life Events + Family Support benefits
  • Fulltime
Read More
Arrow Right

Identity Fabric Principal

In Cyclad we work with top international IT companies in order to boost their po...
Location
Location
Poland , Warsaw
Salary
Salary:
Not provided
cyclad.pl Logo
Cyclad Sp. z o.o.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 10 years of professional experience after education, including at least 8 years in a similar role
  • English proficiency at B2 level
  • Strong experience working in enterprise IAM and hybrid identity environments
  • Excellent understanding of OAuth 2.0, OpenID Connect, and SAML authentication standards
  • Practical experience implementing and troubleshooting authentication flows such as Auth Code + PKCE, Device Code, Client Credentials, and OBO
  • Strong knowledge of token and session lifecycle management, including refresh tokens, validation, and security mitigations
  • Experience designing claims strategies, identity normalization, and least-privilege access models
  • Strong understanding of API permissions and consent governance models
  • Practical experience with Microsoft Entra ID tenant configuration, operational governance, and authentication posture management
  • Experience designing and managing Conditional Access and Identity Protection policies, including MFA enforcement and phased rollouts
Job Responsibility
Job Responsibility
  • Defining and maintaining modern authentication standards for applications and APIs using OAuth2, OpenID Connect, and SAML
  • Supporting project teams in implementing and troubleshooting authentication flows, including Auth Code + PKCE, Device Code, Client Credentials, and On-Behalf-Of (OBO)
  • Reviewing and hardening token and session configurations, including refresh behavior, session controls, and mitigation of authentication threats
  • Designing and standardizing claims and attributes strategies for scalable integrations across multiple identity providers
  • Defining API access models and permission strategies, including scopes vs roles, delegated vs application permissions, and consent governance
  • Configuring and operating federation integrations (IdP/SP), metadata management, rollover planning, and troubleshooting SSO issues
  • Designing and implementing risk-based access controls and step-up authentication patterns using Conditional Access and MFA
  • Delivering Microsoft Entra ID tenant configurations and operational governance improvements
  • Designing external identity onboarding patterns using Entra External ID (CIAM/B2B/B2C)
  • Building, tuning, and safely rolling out Conditional Access and Identity Protection policies
What we offer
What we offer
  • Private medical care with dental care (covering 70% of costs)
  • Family package option possible
  • Multisport card (also for an accompanying person)
  • Life insurance
  • Fulltime
Read More
Arrow Right

Security Engineer II

PagerDuty is seeking an Enterprise Security Engineer to join its global IT Opera...
Location
Location
Canada , Toronto
Salary
Salary:
122000.00 - 185000.00 CAD / Year
https://www.pagerduty.com Logo
PagerDuty
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 3 years of experience in the information security industry, with 2+ years in network security or zero-trust, and 2+ years in security architecture or solution experience
  • Knowledge of Information Security concepts, especially in the areas of security threats, analyzing security logs and driving Incident response
  • Knowledge and practical experience in network security and zero-trust
  • Understanding of the IAM cybersecurity landscape, including identity stores, authentication/authorization, strong authentication, and privileged access management capabilities and methodologies
  • Understanding of security technologies and concepts, including SIEM, MDR/XDR, EDR and vulnerability management
  • Understanding of security best practices and frameworks (e.g., MITRE ATT&CK, NIST Cybersecurity Framework)
  • Knowledge of incident response processes
Job Responsibility
Job Responsibility
  • Partner closely with CISO organization to design and implement enterprise IT security architectures and solutions
  • Tracking the evolution of cutting-edge security technologies, and keeping up to date of the latest security threats and trends
  • Focus on enterprise security and zero-trust technology, serving as the principal technical expert in this area within the Enterprise Security department
  • Monitors security alerts and leads the team in identifying and responding to security threats
  • Monitors systems for vulnerabilities, provides prioritization, and drives remediation efforts
  • Working cross-functionally to triage suspicious activity and drive remediation (performing L2-L3 duties as needed)
  • Analyzing threat intelligence feeds to develop metrics, alerts, and techniques to protect against new and emerging attack vectors
  • Develop metrics, thresholds, alerts, dashboards, and incident response playbooks
  • Drive the design and development of automated security response and maintenance solutions
  • Oversee our workstation vulnerability management & endpoint compliance program
What we offer
What we offer
  • Competitive salary
  • Comprehensive benefits package
  • Flexible work arrangements
  • Company equity
  • ESPP (Employee Stock Purchase Program)
  • Retirement or pension plan
  • Generous paid vacation time
  • Paid holidays and sick leave
  • Dutonian Wellness Days & HibernationDuty - companywide paid days off in addition to PTO
  • Paid parental leave: 22 weeks for pregnant parent, 12 weeks for non-pregnant parent
  • Fulltime
Read More
Arrow Right

AD Technical Lead

Seeking a highly skilled Tech Lead – Active Directory & Entra ID Services respon...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
cigres.com Logo
Cigres
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10–12 years of relevant experience in Active Directory and Entra ID management
  • At least 2–3 years in a leadership role
  • Deep understanding of Windows Server infrastructure, DNS, PKI, and IAM principles
  • Strong PowerShell scripting and automation experience
  • Demonstrated experience in customer-facing service delivery and technical leadership
  • Excellent communication, stakeholder management, and reporting skills
  • Strong problem-solving and analytical mindset with the ability to manage critical incidents under pressure
  • Engineering Graduate or Equivalent
Job Responsibility
Job Responsibility
  • Lead L2/L3 support for Active Directory and Entra ID environments
  • Own and drive technical delivery, ensuring SLAs, KPIs, and compliance targets are met
  • Act as a primary technical and operational escalation point for identity and directory-related incidents
  • Coordinate and manage incident, problem, and change management processes for AD/Entra services
  • Participate in reviews with stakeholders and provide actionable insights
  • Prepare and deliver service performance reports, and management updates
  • Drive continuous improvement, automation, and standardization across the environment
  • Collaborate with project teams to support new implementations, migrations, and transformations
  • Maintain strong customer relationships, ensuring satisfaction and proactive communication
  • Manage day-to-day operations of the team, including workload allocation and task prioritization
  • Fulltime
Read More
Arrow Right

Principal Consultant, Zero Trust Advisory, Proactive Services (Unit 42)

In this client-facing role, the Principal Consultant will lead complex Zero Trus...
Location
Location
Canada , Toronto
Salary
Salary:
151000.00 - 208000.00 USD / Year
paloaltonetworks.it Logo
Palo Alto Networks Italia
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years leading high-stakes cybersecurity advisory and risk management engagements for enterprise clients
  • Former professional services and consulting experience required
  • 3+ years of consulting experience architecting and deploying Zero Trust, SASE, or Identity-centric security models for large, multinational organizations
  • Strong track record in strengthening existing and developing net-new client relationships
  • Lead enterprise Zero Trust advisory engagements, translating business risk into actionable architectures aligned with NIST SP 800-207, NIST NCCoE Zero Trust use cases, and CISA Zero Trust Maturity Model
  • Design and deliver end-to-end Zero Trust architectures across IAM, network, endpoint, cloud, application, and security operations domains for large, complex enterprises
  • Perform enterprise security and architecture assessments to identify gaps, dependencies, and maturity levels, producing clear roadmaps toward an optimized Zero Trust posture
  • Serve as a trusted advisor to C-suite executives, board members, and senior leadership, while also engaging deeply with engineers, architects, and security operations teams
  • Create high-quality client-ready deliverables including reference architectures, target-state designs, migration roadmaps, executive presentations, and technical runbooks
  • Demonstrate solution architecture leadership, maintaining technical vision from strategy through detailed design and implementation
Job Responsibility
Job Responsibility
  • Drive high-value, billable Zero Trust transformation engagements that convert complex security challenges into resilient architectural outcomes
  • Simultaneously deliver elite advisory services to our clients and assist in scaling Unit 42’s Zero Trust practice through technical innovation and business development
  • Assess enterprise architectures to expose hidden zones of implicit trust and high-risk lateral movement paths
  • Analyze enterprise telemetry and policy logs to identify visibility gaps across identity, device, and network layers
  • Execute Zero Trust risk assessments grounded in best practices such as NIST SP 800-207, the CISA ZT Maturity Model, and MITRE ATT&CK to quantify architectural vulnerabilities
  • Devise strategic security transformation recommendations and solutions, to include Unit 42 services and Palo Alto Networks technology, to assist customers in reducing risks
  • Design risk-based control sets that prioritize identity-centric protection and least-privilege access
  • Audit the technical integration of SASE, Identity, EDR/XDR, and Cloud Security to ensure they function as a unified, automated fabric rather than a collection of disconnected silos
  • Develop ZT Roadmaps that provide clients with a realistic, phased path to retiring legacy perimeter defenses
  • Scope new opportunities with prospective clients, including drafting statements of work and responding to Requests for Proposals (RFPs)
What we offer
What we offer
  • restricted stock units
  • bonus
  • employee benefits
  • Fulltime
Read More
Arrow Right
New

Junior Digital Site Merchandiser

Location
Location
United Kingdom , London (Merton)
Salary
Salary:
29000.00 - 32000.00 GBP / Year
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 2 years’ experience with Salesforce B2C Commerce Cloud Platform & content management
  • Experience using Commerce Cloud Business Manager
  • Web/Digital merchandising expertise
  • Data driven
  • Strong analytical and numerical skills
  • An understanding of staging environments & basic HTML coding & web design experience a plus
  • Experience managing web-based analytical tools, such as Google Analytics, Power BI, Tableau
  • Strong PC Skills – Advanced Excel, Word, PowerPoint
  • Team orientated and willing to work as part of a collective
  • Able to deliver under pressure and prioritise accordingly
Job Responsibility
Job Responsibility
  • Assist with merchandising of inventory, catalogues, pricing, promotions, analysing shopping behaviour, and online visual appeal sitewide under the umbrella of driving revenue
  • Execute product assortment rules within Business Manager
  • Sort assigned product categories and subcategories, considering view type, image variants, swatches, image tags, and availability
  • Support with visual merchandising of PLP, PDP for the website
  • Ensure products are presented accurately and updated according to sales strategy, product launch calendar and business/analytics insight
  • Work alongside merchandisers to maintain B2C Commerce price books, export of product data catalogues, for new & existing content
  • Ensure product is made available to our customers, correctly merchandising group products across sites
  • Monitor and assess performance of all imported inventory feeds alongside content assets to assure the correct information is showing per site storefront
  • Applying manual HTML code and updates where needed
  • Identify any site errors related to inventory record, risk assess product's stock level and availability data in the context of each site or storefront inventory list
What we offer
What we offer
  • Staff discounts
  • Training
  • Health & Wellbeing support (includes Private Medical Health Insurance, EAP, Gym Discounts, Access to Financial Planning Service, etc.)
  • Cycle to work scheme
  • Generous annual leave allowance
  • Pension Scheme
  • Opportunity to develop new skills and progress in your career
  • Opportunity to work for a company that cares and believes in its people and the environment
  • Fulltime
Read More
Arrow Right
New

Primary Teacher

A phenomenal Primary School in the Borough of Barnet are on the hunt for a Prima...
Location
Location
United Kingdom , Barnet
Salary
Salary:
39157.00 - 56986.00 GBP / Year
https://edex.co.uk Logo
EdEx
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must have UK QTS
  • You must be ambitious, hardworking, committed and be academically talented
  • Good understanding of the Primary curriculum is required
  • Must be able to work in a team of fantastic Primary Teachers
  • You must set yourself high standards
  • You must meet the Teaching standards to a 'Good or Outstanding' level
Job Responsibility
Job Responsibility
  • Willing to work as a team
  • Eagerness to improve
  • Fantastic work ethic
  • Ambition & hunger
  • Must be able to inspire and motivate the younger generation
What we offer
What we offer
  • TLR opportunities – Maths, English, Humanities and Year Group Lead
  • ECT – Bespoke induction, in & out of house training and termly goals
  • Fantastic CPD opportunities
  • Great Leaders throughout the School
  • Modern facilities and additional support provided throughout
  • Fulltime
Read More
Arrow Right
New

Delivery Driver

As a Car Delivery Driver, you'll be the face of Domino's in your local community...
Location
Location
United Kingdom , Barrow-In-Furness
Salary
Salary:
10.00 - 13.00 GBP / Hour
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Full, valid UK or International driving licence
  • Own a reliable, roadworthy car with valid MOT, tax, and insurance
  • Smartphone for delivery app use
  • Good knowledge of the local area
  • Friendly, reliable, and able to work independently
  • Able to work flexible hours, including evenings and weekends
Job Responsibility
Job Responsibility
  • Deliver pizzas and menu items to customers promptly and safely
  • Provide excellent customer service at every doorstep
  • Operate your vehicle in accordance with road safety regulations
  • Use the Domino's Delivery App on your smartphone to manage orders
  • Support the in-store team during quieter delivery periods (e.g. cleaning, restocking, folding boxes)
  • Represent Domino's positively in the community
What we offer
What we offer
  • Competitive hourly pay + per-delivery payment + tips
  • 28 days paid holiday per year (includes BH, pro rata for part time)
  • Flexible working hours to suit your lifestyle
  • Staff discount on our delicious food
  • Occasional Business Use insurance provided whilst out driving
  • Staff meals (conditions apply)
  • Company pension scheme (where eligible)
  • Family Leave policies in place
  • Paid training and clear career progression pathway with linked pay increases
  • Supportive, inclusive, and fun team environment
  • Parttime
Read More
Arrow Right