Director of Privileged Access Management

About The Position

Requirements

• Bachelor’s degree in a related discipline and 10 years’ experience in a related field. The right candidate could also have a different combination, such as a master's degree and 8 years’ experience; a Ph.D. and 5 years’ experience in a related field; or 22 years’ experience in a related field
• 5+ years’ experience in a management or leadership role
• Deep understanding of organizational strategy, financial drivers, and industry trends.
• Comprehensive knowledge of regulatory requirements impacting privileged access (SOX, GDPR, PCI-DSS).
• Proven experience designing, implementing, and managing enterprise-level PAM programs.
• Deep knowledge of PAM platforms such as CyberArk, BeyondTrust, Delinea (Thycotic), or similar solutions.
• Expertise in Privileged Session Management, Credential Vaulting, Password Rotation, and Just-In-Time (JIT) Access models.
• Ability to integrate PAM solutions with Active Directory, LDAP, Cloud IAM platforms, and DevOps toolchains.
• Strong understanding of IAM principles, including RBAC, ABAC, and least privilege enforcement.
• Experience with MFA, SSO, and federated identity management.
• Familiarity with directory services, identity governance, and access certification processes.
• Design secure architectures incorporating PAM controls across on-premises, cloud, and hybrid environments.
• Conduct risk assessments, threat modeling, and gap analysis for privileged access.
• Knowledge of Zero Trust Architecture and its application to privileged access.
• Hands-on experience ensuring PAM compliance with SOX, PCI-DSS, HIPAA, GDPR, and other regulatory standards.
• Ability to map PAM controls to frameworks such as NIST CSF, ISO 27001, and CIS Controls.
• Expertise in monitoring privileged sessions, detecting anomalies, and responding to potential misuse or compromise.
• Familiarity with SIEM integration for PAM event correlation and alerting.
• Knowledge of cloud-native PAM solutions for AWS, Azure, and GCP.
• Understanding of container security and DevSecOps practices for managing privileged access in CI/CD pipelines.
• Awareness of AI-driven threat detection and behavioral analytics for privileged accounts.
• Ability to evaluate and select PAM technologies, negotiate vendor contracts, and manage large-scale deployments.
• Skilled in creating technical roadmaps, solution architectures, and integration strategies for PAM.

Nice To Haves

• Applicants must currently be authorized to work in the United States for any employer without current or future sponsorship. No OPT, CPT, STEM/OPT or visa sponsorship now or in future.

Responsibilities

• Define and implement the corporate PAM strategy aligned with cybersecurity and business objectives.
• Establish strategic goals for improving privileged access controls, monitoring, and compliance.
• Develop and enforce PAM policies, standards, and procedures to ensure regulatory compliance.
• Direct and evaluate activities of subordinate managers, teams, and third-party service providers.
• Oversee integration of PAM solutions into enterprise architecture and systems.
• Establish systems for continuous monitoring of privileged access threats and vulnerabilities.
• Drive deployment and optimization of PAM tools and technologies.
• Engage with senior leaders to ensure PAM priorities are understood and supported across the enterprise.
• Ensure repeatable processes for privileged account lifecycle management, access reviews, and risk remediation.
• Develop metrics and scorecards to measure PAM effectiveness and risk reduction.
• Apply advanced analytical techniques to complex cybersecurity and privileged access challenges.
• Identify root causes of security risks and develop innovative, practical solutions.
• Use structured methodologies and data-driven insights to evaluate alternatives and select optimal strategies.
• Align PAM initiatives with business objectives to minimize risk while enabling operational efficiency.
• Communicate implications of security decisions to senior leadership in business terms.
• Serve as a trusted advisor to internal stakeholders on PAM strategy, technology, and compliance.
• Translate technical concepts into actionable business recommendations.
• Build consensus across diverse teams and influence decision-making at executive levels.
• Design and implement robust internal control frameworks for privileged access governance.
• Ensure audit readiness and compliance with internal and external standards.
• Conduct periodic reviews and assessments to validate effectiveness of PAM.
• Ensure PAM policies and processes adhere to applicable laws and industry standards.
• Monitor evolving regulations and adjust PAM strategy accordingly.
• Develop strong relationships across IT, business units, and external vendors to drive PAM initiatives.
• Deliver compelling presentations and reports to executive stakeholders.
• Define long-term PAM vision and roadmap, aligning with enterprise cybersecurity strategy.
• Inspire and mentor teams, fostering a culture of accountability and innovation.
• Proven experience designing, implementing, and managing enterprise-level PAM programs.
• Integrate PAM solutions with Active Directory, LDAP, Cloud IAM platforms, and DevOps toolchains.
• Design secure architectures incorporating PAM controls across on-premises, cloud, and hybrid environments.
• Conduct risk assessments, threat modeling, and gap analysis for privileged access.
• Map PAM controls to frameworks such as NIST CSF, ISO 27001, and CIS Controls.
• Monitor privileged sessions, detecting anomalies, and responding to potential misuse or compromise.
• Integrate with SIEM for PAM event correlation and alerting.
• Evaluate and select PAM technologies, negotiate vendor contracts, and manage large-scale deployments.
• Create technical roadmaps, solution architectures, and integration strategies for PAM.

Benefits

• health care insurance (medical, dental, vision)
• retirement planning (401(k))
• paid days off (sick leave, parental leave, flexible vacation/wellness days, and/or PTO)
• flexible vacation with pay
• seven paid holidays
• up to 160 hours of paid wellness annually
• bereavement leave
• time off to vote
• jury duty leave
• volunteer time off
• military leave
• parental leave