Manager - Identity and Access Management

Role Summary

Manager-level role focused on designing, implementing, and maintaining BeyondTrust PAM infrastructure (Password Safe, Privileged Remote Access, Endpoint Management) to protect privileged access across the enterprise.

Responsibilities

• Implementation and Configuration: Deploy, configure, and maintain BeyondTrust Password Safe, Privileged Remote Access, Endpoint Management; design and implement privileged access policies and workflows; configure password vaulting, session recording, and automated password rotation; integrate BeyondTrust with identity management systems, directories, and security tools.
• Administration and Maintenance: Monitor performance, availability, and security of BeyondTrust infrastructure; perform updates and maintenance; manage user accounts, groups, and access permissions; troubleshoot and provide Level 2/3 support for PAM incidents.
• Security and Compliance: Develop and enforce privileged access governance; conduct access reviews and audit privileged account usage; generate compliance reports for audits; implement controls to prevent unauthorized privileged access; respond to security incidents involving privileged accounts.
• Documentation and Training: Create and maintain technical documentation, runbooks, and SOPs; provide training and support on PAM best practices; document system configurations and integrations; develop disaster recovery and business continuity procedures for PAM systems.

Qualifications

• Required: Bachelor's Degree and 6+ years of experience OR Master's Degree and 5+ years of experience OR PhD with no experience.
• Required: Experience with BeyondTrust PAM solutions (Password Safe, Privileged Remote Access, etc.).
• Required: Strong understanding of privileged access management concepts and security frameworks.
• Required: Experience with Windows and Linux system administration.
• Required: Knowledge of Active Directory, LDAP, and identity management systems.
• Required: Familiarity with database administration (SQL Server, Oracle, MySQL).
• Required: Understanding of network protocols, firewalls, and security architecture.
• Required: Bachelor's degree in Computer Science, Information Security, or related field.
• Required: Strong analytical and problem-solving abilities; excellent communication and documentation skills; ability to work independently and manage multiple priorities.

Preferred

• Preferred: BeyondTrust certified professional credentials.
• Preferred: Security certifications such as CISSP, CISM, or GSEC.
• Preferred: Knowledge of DevOps tools and practices (Ansible, PowerShell, Python scripting).
• Preferred: Understanding of cloud platforms (AWS, Azure, GCP) and hybrid environments.
• Preferred: Experience with SIEM integration and log analysis.
• Preferred: Experience working in regulated industries (finance, healthcare, government).

Education

• Bachelor's degree in Computer Science, Information Security, or related field.