Associate Director IT Security Engineering (PAM)

About The Position

Requirements

• Minimum of 8 years of related experience
• Bachelor's degree preferred and/or equivalent experience
• 8+ years in security/platform engineering or IAM, with 3+ years leading engineering teams.
• Solid understanding of privileged account lifecycle, credential vaulting, and session management.
• Expertise in automation (Jenkins, Python, Groovy or equivalent) and integration with CI/CD and ITSM tools.
• Familiarity with Windows, Unix/Linux, Active Directory, and hybrid cloud environments.
• Understanding of regulatory compliance and audit processes in financial or highly regulated industries.

Nice To Haves

• Experience implementing and managing Bravura PAM or similar enterprise PAM solutions (e.g. CyberArk).
• Experience with Zero Trust architectures, API-based integrations, and sophisticated PAM features (JIT, ephemeral credentials).
• Familiarity with cloud, Kubernetes, OpenShift platform and PAM integration patterns.
• Knowledge of risk frameworks and evidence automation for audits.

Responsibilities

• Own PAM platform strategy and roadmap: Define architecture for PAM and future roadmap; ensure scalability, HA/DR, and integration with enterprise IAM and security controls.
• Drive platform maturity: Implement sophisticated capabilities (JIT access, session recording, credential vaulting, API integrations) and standardize onboarding of new systems.
• Governance & compliance: Establish policies for privileged account lifecycle, enforce password complexity and rotation, and ensure audit readiness for SOX, PCI, and internal controls.
• Automation & integration: Embed PAM into CI/CD pipelines and workflows; develop scripts and connectors for automated provisioning and session management.
• Operational excellence: Monitor PAM performance, lead incident response for privileged access breaches, and conduct root-cause analysis and remediation.
• Stakeholder engagement: Communicate platform health, roadmap, and risk posture to senior leadership; manage vendor relationships and licensing.
• Team leadership: Build and mentor a high-performing engineering team; set objectives, mentor on PAM standard processes, and foster continuous learning.
• Disaster recovery readiness: Participate in DR exercises and ensure PAM resilience in loss-of-region scenarios.

Benefits

• Competitive compensation, including base pay and annual incentive
• Comprehensive health and life insurance and well-being benefits, based on location
• Pension / Retirement benefits
• Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
• DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).