Senior Privileged Access Management (PAM) Engineer

  • Seattle, Washington, United States
  • WFH Flexible
  • Full-time
  • Information Technology
  • 1664

We are seeking a highly skilled and experienced Sr. Privileged Access Management (PAM) Platform Engineer to lead enterprise-level PAM initiatives using BeyondTrust. This role will be instrumental in defining the architecture, integration approach, and operational rollout of the PAM platform, primarily across Windows Server environments, with integration into ITSM and broader identity/security infrastructure.

This is a strategic and hands-on role involving design, automation, policy governance, and deep cross-functional collaboration.

Responsibilities

  • Platform Ownership: Act as the technical SME for BeyondTrust, owning the architecture, deployment strategy, and performance optimization of the PAM platform.
  • Integration Leadership: Design and implement integrations with Windows Server, Active Directory, ITSM systems (e.g., ServiceNow), SIEM tools (e.g., Splunk), and identity platforms like IdentityNow.
  • Rollout Strategy: Develop a comprehensive, phased deployment and operationalization plan for BeyondTrust across the enterprise.
  • Access Governance: Define and manage policies for credential management, access request workflows, session monitoring, and automated password rotation.
  • Automation: Leverage scripting (e.g., PowerShell) to automate platform operations and onboarding processes.
  • Security & Compliance: Ensure PAM implementations meet internal and regulatory standards such as PCI DSS, including audit logging and privileged access governance.
  • Support & Troubleshooting: Provide Tier 3-level support and troubleshooting for PAM-related issues, including potential participation in pager-duty rotations in the future.
  • Documentation & Training: Develop detailed technical documentation, standard operating procedures (SOPs), and provide enablement for internal teams.

Required Qualifications

  • 4–6+ years of experience in Privileged Access Management engineering roles, with a strong focus on BeyondTrust (experience with CyberArk or Delinea is a plus but not required).
  • Demonstrated expertise in Windows Server, Active Directory, Group Policy, and PowerShell scripting.
  • Hands-on experience with PAM integration into enterprise IT systems such as ITSM (ServiceNow), SIEM (Splunk), directory services, and cloud environments (AWS, Azure).
  • Knowledge of identity platforms like SailPoint IdentityNow.
  • Solid understanding of Linux/Unix administration and shell scripting.
  • Familiarity with networking fundamentals: ports, protocols, certificates, and secure communication.
  • Exposure to cloud infrastructure and container environments such as Docker or Kubernetes.
  • Working knowledge of identity and access protocols: SAML, OIDC, OAuth, SCIM, LDAP.

We have a global team of amazing individuals working on highly innovative enterprise projects & products. Our customer base includes Fortune 100 retail and CPG companies, leading store chains, fast growth fintech, and multiple Silicon Valley startups.

What makes Confiz stand out is our focus on processes and culture. Confiz is ISO 9001:2015 (QMS), ISO 27001:2022 (ISMS), ISO 20000-1:2018 (ITSM) and ISO 14001:2015 (EMS) Certified. We have a vibrant culture of learning via collaboration and making workplace fun.

People who work with us work with cutting-edge technologies while contributing success to the company as well as to themselves. 

To know more about Confiz Limited, visit https://www.linkedin.com/company/confiz

 

Apply Now