CrawlJobs Logo
Mastercard Logo Mastercard · IT - Administration

Senior PAM Support Engineer

United Kingdom, London · Job Posted March 20, 2026
Apply Position
Job Link Share

Job Description

This is an exciting opportunity to be part of the function overseeing Security for Vocalink Limited, a company that enables the payments of 90% of salaries, 70% of utility bills, most ATM transactions and every cheque cleared in the UK. The successful candidate will become part of a high functioning team, dedicated to delivering a robust, secure, and resilient service to 60+million citizens every day with transactional volume of 11 billion/year and total annual transactional value in excess of GBP6 Trillion. The Senior PAM Support Engineer is part of a team playing a crucial role in designing, implementing, operating and overseeing the company's Privileged Access Management solutions. The ideal candidate will help define, enhance, and implement Vocalink's information security processes, while ensuring consistent administration of information security assets and controls to effectively improve security posture.

Job Responsibility

  • Senior Privileged Access Management (PAM) BAU engineer, performing operational tasks, ensuring they are delivered on time and meet the set specifications
  • Work closely with the PAM manager to drive changes throughout the PAM team to improve Vocalink’s identity security posture
  • Regularly review and refine PAM policies to ensure they align with industry best practices and regulatory standards
  • Monitor and respond to any security breaches or irregularities within the PAM systems
  • Provide guidance and mentorship to junior team members, fostering a culture of continuous learning and improvement
  • Review the configuration of existing systems or solutions and identify security issues which require a change to its configuration, provide improvement recommendations and escalate any potential risks helping ensure security risks are pro-actively managed

Requirements

  • Track record of operating Self-Hosted CyberArk PAS in regulated environments
  • CyberArk CDE (Certified Delivery Engineer), Sentry or Guardian certified
  • Detailed exposure to the CyberArk Self-Managed product suite – EPV, PVWA, CPM, CP/CCP, PSM, PSMP, PTA, DNA, EPM, Telemetry
  • Good understanding of HSM technologies as they relate to CyberArk
  • Good understanding of Active Directory, Wintel and Unix/Linux in a PAM/CyberArk context
  • Experience of connector development for CyberArk PSM and CPM
  • Exposure to, and willingness to learn, other PAM technologies in use within Mastercard/Vocalink (e.g. Hashicorp)
  • Ability to articulate themselves clearly and concisely to a broad range of senior and junior stakeholders, acting as a bridge as well as guide for the implementation of new capabilities
  • Problem solving – excellent analysis and deductive skills
  • Customer focus – passion for excellence
  • Ethics – strong personal and professional ethics
  • Highly motivated, detail-focused and conscientious individual
  • Embodies and demonstrates all the brand values required by Vocalink and Mastercard
  • Strong team player – leads by example
  • SC Cleared, or willing and able to be SC cleared
Mastercard - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Senior PAM Support Engineer

8 matching positions

Pam Senior Engineer

Researches, designs, develops, configures, integrates, tests and maintains exist...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Technical Bachelor's degree or equivalent experience and a minimum of 10 years of related experience or a Master's degree and a minimum of 8 years of experience
  • 10+ years of experience on modern IAM/PAM platforms (CyberArk, Beyond Trust, HashiCorp Vault or other PAM products)
  • CyberArk implementation/integrations experience preferred
  • Platform & technical experience implementing PAM solutions focused security solutions for modelling cloud access models
  • Design-level and hands-on skills with the following technologies: Cyberark Core PAS, Secure Password Vault and Safes, Central Policy Manager, Privileged Session Manager, Password Vault Web Access, Application Access Manager
  • Supporting proof of concept and solution deployments of IAM and cloud technologies
  • Windows Active Directory, Microsoft Azure AD, REST API programming
  • Excellent communication skills (both written and verbal)
  • Hands-on technical lead, implement PAM solutions as required
  • Resolve technical challenges, troubleshooting skills are required, along with effective organization skills, the ability to multi-task, and efficient time-management skills
Job Responsibility
Job Responsibility
  • Participates as a member of and leads development teams
  • Performs analysis of complex functional and business requirements
  • Prepares code stubs for others
  • Completes code to implement solutions
  • Designs solutions for others to code
  • Participates in cross-functional teams
  • Leads design activities
  • May provide mentoring and guidance to other developers
  • Designs, prepares and executes Unit tests
  • Represents team to client/customers
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Comprehensive suite of benefits that supports physical, financial and emotional wellbeing
  • Specific programs catered to helping reach career goals
  • Fulltime
Read More
Arrow Right

Senior Security Engineer – PAM

We are looking for a Senior Security Engineer – PAM to join our Global Informati...
Location
Location
United States , Burbank, CA, Seattle, WA or New York City
Salary
Salary:
90.00 - 97.00 USD / Hour
softwareresources.com Logo
Software Resources
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 5+ years of experience in cybersecurity or identity and access management, with at least 3 years focused on Privileged Access Management
  • Hands-on experience administering enterprise PAM platforms such as CyberArk (EPV, PSM, PVWA, CPM, CCP) or CA PAM (Broadcom Privileged Access Manager)
  • Proficiency in scripting and automation with PowerShell and/or Python for PAM workflows
  • Experience integrating PAM solutions with enterprise directories (Active Directory, LDAP) and cloud platforms (AWS, Azure, GCP)
  • Strong understanding of PAM concepts: credential vaulting, session recording, just-in-time access, least privilege, secrets management, and SSH key management
  • Demonstrated experience supporting compliance and audit processes (SOX, PCI-DSS, or similar frameworks)
  • Ability to work effectively across cross-functional teams in a large enterprise environment
  • BA/BS Degree Comp Sci/IS or related field
Job Responsibility
Job Responsibility
  • Design, implement, and maintain enterprise PAM solutions including privileged account vaulting, session management, just-in-time access, and secrets management
  • Administer and operate PAM platforms (e.g., CyberArk, CA PAM) across on-premises and cloud environments, ensuring high availability and security policy enforcement
  • Develop and maintain automation for PAM onboarding, account provisioning, rotation, and reconciliation using PowerShell, Python, REST APIs, and Terraform
  • Collaborate with IT, Cloud, DevOps, and application teams to integrate PAM controls into CI/CD pipelines, cloud platforms, and third-party systems
  • Define and enforce privileged account policies aligned with security standards, regulatory requirements, and industry best practices
  • Lead PAM-related risk assessments, access reviews, and audit response activities
  • Troubleshoot complex PAM platform issues, driving root cause analysis and permanent remediation
  • Mentor junior engineers and contribute to team documentation, runbooks, and architectural standards
  • Identify opportunities to reduce the privileged access attack surface through improved tooling, automation, and process improvements
  • Support knowledge sharing across the PAM team by leading technical discussions, reviewing peers' work, and contributing to team learning initiatives
What we offer
What we offer
  • medical coverage
  • dental coverage
  • vision coverage
  • 401(k) with company match
  • short-term disability
  • life insurance with AD&D
  • Fulltime
Read More
Arrow Right

Senior Security Engineer – PAM

Software Resources has an immediate, contract job opportunity for a Senior Secur...
Location
Location
United States , Orlando
Salary
Salary:
Not provided
softwareresources.com Logo
Software Resources
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 5+ years of experience in cybersecurity or identity and access management, with at least 3 years focused on Privileged Access Management
  • Hands-on experience administering enterprise PAM platforms such as CyberArk (EPV, PSM, PVWA, CPM, CCP) or CA PAM (Broadcom Privileged Access Manager)
  • Proficiency in scripting and automation with PowerShell and/or Python for PAM workflows
  • Experience integrating PAM solutions with enterprise directories (Active Directory, LDAP) and cloud platforms (AWS, Azure, GCP)
  • Strong understanding of PAM concepts: credential vaulting, session recording, just-in-time access, least privilege, secrets management, and SSH key management
  • Demonstrated experience supporting compliance and audit processes (SOX, PCI-DSS, or similar frameworks)
  • Ability to work effectively across cross-functional teams in a large enterprise environment
  • BA/BS Degree Comp Sci/IS or related field
Job Responsibility
Job Responsibility
  • Design, implement, and maintain enterprise PAM solutions including privileged account vaulting, session management, just-in-time access, and secrets management
  • Administer and operate PAM platforms (e.g., CyberArk, CA PAM) across on-premises and cloud environments, ensuring high availability and security policy enforcement
  • Develop and maintain automation for PAM onboarding, account provisioning, rotation, and reconciliation using PowerShell, Python, REST APIs, and Terraform
  • Collaborate with IT, Cloud, DevOps, and application teams to integrate PAM controls into CI/CD pipelines, cloud platforms, and third-party systems
  • Define and enforce privileged account policies aligned with security standards, regulatory requirements, and industry best practices
  • Lead PAM-related risk assessments, access reviews, and audit response activities
  • Troubleshoot complex PAM platform issues, driving root cause analysis and permanent remediation
  • Mentor junior engineers and contribute to team documentation, runbooks, and architectural standards
  • Identify opportunities to reduce the privileged access attack surface through improved tooling, automation, and process improvements
  • Support knowledge sharing across the PAM team by leading technical discussions, reviewing peers' work, and contributing to team learning initiatives
What we offer
What we offer
  • medical, dental, and vision coverage
  • 401(k) with company match
  • short-term disability
  • life insurance with AD&D
  • Fulltime
Read More
Arrow Right

IAM Senior Engineer - Active Directory/Entra ID

HPE Global IT is seeking a highly skilled Senior Active Directory (AD), Entra ID...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience)
  • 10+ years of IT or cybersecurity experience
  • 7+ years focused on AD, Entra ID, and Azure identity engineering in enterprise-scale environments
  • Deep hands-on experience managing multi-forest AD environments (schema, replication, delegation, GPOs, DNS, DHCP)
  • Strong expertise with Entra ID and hybrid identity integration (Entra Connect / Cloud Sync, federation, SSO)
  • Hands-on experience with Azure governance, RBAC, PIM, and access policy enforcement
  • Experience implementing conditional access, passwordless, and phishing-resistant MFA in Entra and Azure
  • Proficiency in PowerShell scripting, Graph API, and Azure automation for identity management and reporting
  • Solid understanding of authentication protocols (Kerberos, NTLM, LDAP, SAML, OIDC, OAuth2)
  • Familiarity with Zero Trust, tiered admin models, and directory hardening practices
Job Responsibility
Job Responsibility
  • Engineer, deploy, and optimize Active Directory, Entra ID, and Azure identity services across enterprise-scale hybrid environments
  • Design and manage multi-forest AD architectures, including schema extensions, replication, delegation, and hardening
  • Implement and maintain cross-domain and cross-tenant synchronization between AD and Entra ID using Entra Connect or Cloud Sync
  • Engineer secure authentication and federation flows leveraging Kerberos, NTLM, SAML, OIDC, and OAuth2
  • Implement and enhance conditional access, MFA, passwordless, and FIDO2 authentication methods in Entra and Azure environments
  • Support Zero Trust Directory Security through tiered administration, least privilege, and delegated access controls
  • Partner with cloud and infrastructure teams to ensure secure integration of Azure resources with enterprise identity services
  • Maintain and secure domain controllers, DNS, DHCP, and Group Policy Objects (GPOs) across global environments
  • Manage Azure AD tenants, subscriptions, and resource access controls (RBAC, PIM, Entra roles)
  • Integrate on-prem AD with Azure workloads, Microsoft 365, Intune, and other SaaS applications
What we offer
What we offer
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Comprehensive suite of benefits supporting physical, financial and emotional wellbeing
  • Fulltime
Read More
Arrow Right

IAM Secrets Management Senior Engineer

This role has been designed as ‘Hybrid’ with an expectation that you will work o...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience)
  • 10+ years of experience in IT or cybersecurity, with 6+ years focused on secrets management, PAM
  • Hands-on experience with HashiCorp Vault Enterprise, including configuration, replication, DR, policies, and secrets engines
  • Experience integrating Vault with PAM tools (CyberArk, BeyondTrust) and DevOps toolchains (Jenkins, GitHub, GitLab, Azure DevOps, Kubernetes)
  • Strong scripting and automation skills (Python, PowerShell, Bash, Terraform, REST APIs)
  • Experience with cloud identity and secrets services (AWS Secrets Manager, Azure Key Vault, GCP Secret Manager)
  • Working knowledge of authentication standards (OIDC, JWT, LDAP, Kerberos, SAML, OAuth2)
  • Experience implementing Zero Trust and Just-in-Time access models
  • Understanding of security compliance frameworks (SOX, FedRAMP, ISO 27001, NIST 800-53)
  • Preferred certifications: HashiCorp Certified Vault Associate, CyberArk Defender/Sentry, CISSP, or equivalent
Job Responsibility
Job Responsibility
  • Deploy, configure, and manage HashiCorp Vault Enterprise clusters, including replication, DR, namespaces, secrets engines, and authentication methods
  • Implement dynamic and static secrets, short-lived credentials, and automated rotation for accounts, APIs, and services
  • Integrate secrets management with PAM platforms (e.g., CyberArk, BeyondTrust) and CI/CD pipelines (Jenkins, GitHub, GitLab, Azure DevOps)
  • Build and maintain Vault policies, AppRoles, OIDC/JWT integrations, and RBAC models
  • Automate secrets onboarding and lifecycle management using APIs, Terraform, and scripting languages (Python, PowerShell, Bash)
  • Ensure secure integration of Vault with cloud workloads (AWS, Azure, GCP) and container platforms (Kubernetes, Docker)
  • Support migration from legacy key stores or password vaults to centralized secrets management platforms
  • Maintain secure configurations, audit logging, and event forwarding to SIEM/SOAR systems
  • Ensure Vault operational health, monitoring, and performance tuning
  • Perform upgrades, patching, and disaster recovery operations for secrets management platforms
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right

Senior Solutions Engineer - Public Sector - SLED

As a Senior Solutions Engineer at Palo Alto Networks - Idira (CyberArk), you wil...
Location
Location
United States , Chicago
Salary
Salary:
198000.00 - 273000.00 USD / Year
paloaltonetworks.it Logo
Palo Alto Networks Italia
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • MIS/Computer Science Degree or equivalent experience required
  • 5+ Years experience in a presales technical role, ideally specifically with identity management or security technologies
  • Expertise in Government IT & Security Requirements including familiarity with government-specific security requirements (FIPS, FedRAMP, ATOs, STIGs/hardening), security accreditation processes, and public sector procurement procedures (NIST 800-53 and ATO processes)
  • Collaborative & Solution-Oriented
  • Identity Security Proficiency: Knowledge of identity security technologies, Identity and Access Management solutions, Identity Governance solutions, Privileged access management (PAM), and related security solutions
  • Windows/Active Directory Expertise: Hands-on experience with Windows Server and Active Directory administration, Directory Services (LDAP, AD, Federation, Bridging), and familiarity with UNIX/Linux systems
  • Cloud Technology Expertise: Experience with IaaS/PaaS administration and support within cloud providers (AWS, Azure, GCP) are highly desirable
  • Strong Communication & Presentation Skills
  • Certifications: Industry recognized certifications are highly desirable (i.e. CISSP, CEH)
  • Travel: Ability to travel up to 50% as needed when safe to do so
Job Responsibility
Job Responsibility
  • Engaging with clients via demos, presentations, meetings, and Proof of Concepts (POCs) to showcase how Idira secures critical assets across hybrid cloud environments and distributed workforces
  • Serve as the subject matter expert on Idira's Identity Security solutions, providing in-depth knowledge and technical guidance to public sector organizations and partners, through business value presentations, solution demonstrations, architecture reviews, etc
  • Proactively seek out new sales opportunities by developing new and existing technical relationships within prospective accounts, partners, and current active customers
  • Plan, execute, and manage Proof of Concept (POC) evaluations with potential and existing public sector customers, demonstrating how Idira’s solutions can solve their security challenges
  • Assist in the preparation and response to Requests for Proposals (RFPs) and Requests for Information (RFIs), positioning Idira’s solutions for success in public sector evaluations
  • Build and maintain strong, long-term relationships with technical teams and executive stakeholders within public sector organizations, ensuring they achieve success and satisfaction with Idira’s solutions
  • Support and enable Idira’s partner network, ensuring they can effectively communicate the value of Idira to their public sector clients
  • Represent Idira at industry events, partner seminars, trade shows, and marketing initiatives, showcasing the value of Identity Security solutions to government and educational organizations
  • Convey customer requirements to Product Management teams, Professional Services and other internal Idira teams on behalf of customers and partners
  • Actively engage and contribute to the internal teams, serving as a resource and mentor to others when appropriate
What we offer
What we offer
  • Restricted stock units
  • Bonus
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

We are looking for a Senior Security Engineer – PAM to join the Global Informati...
Location
Location
United States , Burbank
Salary
Salary:
90.00 - 97.00 USD / Hour
softwareresources.com Logo
Software Resources
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 5+ years of experience in cybersecurity or identity and access management, with at least 3 years focused on Privileged Access Management
  • Hands-on experience administering enterprise PAM platforms such as CyberArk (EPV, PSM, PVWA, CPM, CCP) or CA PAM (Broadcom Privileged Access Manager)
  • Proficiency in scripting and automation with PowerShell and/or Python for PAM workflows
  • Experience integrating PAM solutions with enterprise directories (Active Directory, LDAP) and cloud platforms (AWS, Azure, GCP)
  • Strong understanding of PAM concepts: credential vaulting, session recording, just-in-time access, least privilege, secrets management, and SSH key management
  • Demonstrated experience supporting compliance and audit processes (SOX, PCI-DSS, or similar frameworks)
  • Ability to work effectively across cross-functional teams in a large enterprise environment
  • BA/BS Degree Comp Sci/IS or related field
Job Responsibility
Job Responsibility
  • Design, implement, and maintain enterprise PAM solutions including privileged account vaulting, session management, just-in-time access, and secrets management
  • Administer and operate PAM platforms (e.g., CyberArk, CA PAM) across on-premises and cloud environments, ensuring high availability and security policy enforcement
  • Develop and maintain automation for PAM onboarding, account provisioning, rotation, and reconciliation using PowerShell, Python, REST APIs, and Terraform
  • Collaborate with IT, Cloud, DevOps, and application teams to integrate PAM controls into CI/CD pipelines, cloud platforms, and third-party systems
  • Define and enforce privileged account policies aligned with security standards, regulatory requirements, and industry best practices
  • Lead PAM-related risk assessments, access reviews, and audit response activities
  • Troubleshoot complex PAM platform issues, driving root cause analysis and permanent remediation
  • Mentor junior engineers and contribute to team documentation, runbooks, and architectural standards
  • Identify opportunities to reduce the privileged access attack surface through improved tooling, automation, and process improvements
  • Support knowledge sharing across the PAM team by leading technical discussions, reviewing peers' work, and contributing to team learning initiatives
What we offer
What we offer
  • Medical coverage
  • Dental coverage
  • Vision coverage
  • 401(k) with company match
  • Short-term disability
  • Life insurance with AD&D
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

We are looking for a Senior Security Engineer – PAM to join the Global Informati...
Location
Location
United States , Orlando
Salary
Salary:
Not provided
softwareresources.com Logo
Software Resources
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 5+ years of experience in cybersecurity or identity and access management, with at least 3 years focused on Privileged Access Management
  • Hands-on experience administering enterprise PAM platforms such as CyberArk (EPV, PSM, PVWA, CPM, CCP) or CA PAM (Broadcom Privileged Access Manager)
  • Proficiency in scripting and automation with PowerShell and/or Python for PAM workflows
  • Experience integrating PAM solutions with enterprise directories (Active Directory, LDAP) and cloud platforms (AWS, Azure, GCP)
  • Strong understanding of PAM concepts: credential vaulting, session recording, just-in-time access, least privilege, secrets management, and SSH key management
  • Demonstrated experience supporting compliance and audit processes (SOX, PCI-DSS, or similar frameworks)
  • Ability to work effectively across cross-functional teams in a large enterprise environment
  • BA/BS Degree Comp Sci/IS or related field
Job Responsibility
Job Responsibility
  • Design, implement, and maintain enterprise PAM solutions including privileged account vaulting, session management, just-in-time access, and secrets management
  • Administer and operate PAM platforms (e.g., CyberArk, CA PAM) across on-premises and cloud environments, ensuring high availability and security policy enforcement
  • Develop and maintain automation for PAM onboarding, account provisioning, rotation, and reconciliation using PowerShell, Python, REST APIs, and Terraform
  • Collaborate with IT, Cloud, DevOps, and application teams to integrate PAM controls into CI/CD pipelines, cloud platforms, and third-party systems
  • Define and enforce privileged account policies aligned with security standards, regulatory requirements, and industry best practices
  • Lead PAM-related risk assessments, access reviews, and audit response activities
  • Troubleshoot complex PAM platform issues, driving root cause analysis and permanent remediation
  • Mentor junior engineers and contribute to team documentation, runbooks, and architectural standards
  • Identify opportunities to reduce the privileged access attack surface through improved tooling, automation, and process improvements
  • Support knowledge sharing across the PAM team by leading technical discussions, reviewing peers' work, and contributing to team learning initiatives
What we offer
What we offer
  • Medical, dental, and vision coverage
  • 401(k) with company match
  • Short-term disability
  • Life insurance with AD&D
Read More
Arrow Right