Lead PAM Engineer

About The Position

Requirements

• Bachelor's degree and a minimum of 5 years’ relevant work experience, or in lieu of a degree, a combined minimum of 9 years’ higher education and/or work experience
• Advanced ability to use multiple Cybersecurity tools, specific to function.

Nice To Haves

• Advanced understanding of the PAM security system development and infrastructure lifecycle and architecture, and systems design
• Proven experience with the development and customization of PAM tools utilized in assigned Cybersecurity function
• Demonstrated ability to translate architecture into technical requirements
• Proficient level of critical thinking and problem solving ability
• Excellent communication and interpersonal skills
• Experience partnering with leaders to design solutions to business needs.
• Proficient persuasive communication skills to gain buy-in of others
• Strong ability to analyze and draw reliable conclusions based on large volumes of quantitative data from diverse sources
• Ability effectively serves in indirect leadership role

Responsibilities

• Lead the design, deployment, and integration of Privileged Access Management (PAM) solutions.
• Customize and configure PAM tools (e.g., CyberArk, BeyondTrust, Thycotic) to meet organizational needs.
• Develop and implement policies, procedures, and practices related to PAM.
• Manage and maintain PAM systems, ensuring high availability, scalability, and performance.
• Monitor PAM environments for compliance with security policies and audit requirements.
• Conduct regular audits and assessments of privileged accounts to ensure compliance with security policies.
• Collaborate with internal audit and compliance teams to ensure adherence to regulatory requirements.
• Provide guidance and training to internal teams on the effective use of PAM tools.
• Define and implement tuning methodologies for systems and technologies, using advanced analytical techniques to maximize efficiencies.
• Develop and implement automation and orchestration for complex systems to streamline security operations and response activities.
• Lead collaboration efforts with Cybersecurity and Technology teams to effectively implement and maintain security solutions for the organization.
• Lead improvement initiatives within Cybersecurity team, implementing best practices and optimizing processes to enhance security capabilities.
• Actively partner with vendor to optimize security products and/or drive resolution of complex support issues.
• Assist leadership with vendor relationships by maintaining when licenses need to be renewed, informing when hardware needs to be refreshed or new technologies should be considered.
• Understand and adhere to the Company’s risk and regulatory standards, policies, and controls in accordance with the Company’s Risk Appetite.
• Design, implement, maintain, and enhance internal controls to mitigate risk on an ongoing basis.
• Identify risk-related issues needing escalation to management.
• Promote an environment that supports belonging and reflects the M&T Bank brand.
• Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.
• Complete other related duties as assigned.

Benefits

• As an employer of choice, we are proud to offer competitive benefits ranging from medical and retirement to forty hours of paid volunteer time, each year.