Lead Cybersecurity - Privileged Access Management

About The Position

Requirements

• 5+ years in Cybersecurity, PAM, IAM, or infrastructure security.
• Hands‑on experience with CyberArk (CPM, CCP, ASCP) and Delinea AD Bridging.
• Strong understanding of Active Directory, Entra ID, LDAP, Kerberos, and integration for non‑Windows systems.
• Experience integrating Linux/Unix servers and databases with AD/Entra ID.
• Familiarity with database authentication models, service accounts, and privileged operations.
• Excellent communication and cross‑functional coordination skills.

Nice To Haves

• CyberArk or Delinea certifications.
• Experience with NIST, PCI DSS, HIPAA, SOC2 compliance frameworks.
• Scripting knowledge (PowerShell, Bash, Python, SQL).
• Experience with cloud identity integrations (Azure, hybrid identity models).

Responsibilities

• Privileged Access Onboarding & Support Coordinate onboarding of application, database, and service accounts into CyberArk and Delinea AD Bridging.
• Support CyberArk CPM, CCP, and ASCP integrations for password rotation and secrets delivery.
• Guide teams on best practices for privileged account vaulting, access policy mapping, and lifecycle operations.
• Provide operational oversight for PAM onboarding, troubleshooting, and documentation.
• Active Directory / Entra ID Integration for Databases & Operating Systems Drive enterprise adoption and integration of all database platforms (Oracle, SQL Server, MySQL, PostgreSQL, etc.) into Entra ID / AD.
• Lead integration of all operating systems (Windows, Unix, Linux) with Entra ID / AD, ensuring consistent authentication and centralized access governance.
• Work with infrastructure and engineering teams to define integration patterns, standards, and security controls.
• Oversee configuration, deployment, and validation of identity connectors, AD Bridging agents, and authentication modules.
• Ensure secure implementation of Kerberos, LDAP, SSSD/WinBind, and certificate-based authentication as required.
• Cross‑Team Collaboration & Enablement Serve as a liaison among PAM engineering, OS/DB platform teams, application owners, and security stakeholders.
• Lead workshops, training sessions, and office hours for teams integrating with PAM or migrating to AD/Entra ID.
• Maintain onboarding roadmaps, integration timelines, status trackers, and communication plans.
• Security Compliance & Governance Ensure all integrations adhere to corporate security standards and regulatory frameworks (HIPAA, SOC2, NIST, PCI, etc.).
• Maintain audit documentation for PAM and AD/Entra ID integrations.
• Support access reviews, recertification, and audit responses.
• Troubleshooting & Operational Support Assist teams with technical issues related to account integration, authentication failures, password rotation, and AD Bridging.
• Coordinate with engineering and vendors for escalations.
• Develop and maintain runbooks, troubleshooting guides, and integration standards.

Benefits

• Medical/Dental/Vision coverage
• 401(k) plan
• Tuition reimbursement program
• Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays)
• Paid Parental Leave
• Paid Caregiver Leave
• Additional sick leave beyond what state and local law require may be available but is unprotected
• Adoption Reimbursement
• Disability Benefits (short term and long term)
• Life and Accidental Death Insurance
• Supplemental benefit programs: critical illness/accident hospital indemnity/group legal
• Employee Assistance Programs (EAP)
• Extensive employee wellness programs
• Employee discounts up to 50% off on eligible AT&T mobility plans and accessories, AT&T internet (and fiber where available) and AT&T phone.