PIM/PAM Engineer

About The Position

Requirements

• Ability to obtain and maintain a DoD Secret Clearance. U.S. Citizenship is required.
• Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related technical field is required.
• 6+ of progressive IT experience required with 2-3+ years of dedicated experience in Identity and Access Management (IAM), with a strong focus on PIM/PAM engineering highly desired.
• Deep understanding of session recording, credential vaulting, secrets management, and delegation of authority.
• Strong foundational knowledge of Windows Active Directory, Linux/Unix administration, Group Policy Objects (GPOs), and basic networking protocols.
• Proficiency in scripting languages (e.g., PowerShell, Python, Bash) for automation and API integrations.

Nice To Haves

• CompTIA Security+ CE (Current) is highly desired.

Responsibilities

• Design, deploy, configure, and maintain robust PIM/PAM solutions across enterprise, cloud, and hybrid environments.
• Manage the lifecycle of privileged accounts, including automated vaulting, password rotation, privileged session management, and just-in-time (JIT) access.
• Integrate PIM/PAM tools with broader identity ecosystems (IdPs, IGA, SIEM, and ticketing systems like ServiceNow) using APIs and custom scripting.
• Define, implement, and enforce least-privilege access policies, role-based access control (RBAC), and attribute-based access control (ABAC).
• Conduct regular discovery audits to identify unmanaged privileged accounts, service accounts, and secrets, bringing them under centralized management.
• Provide tier-3 technical support for complex identity infrastructure issues, system upgrades, patches, and disaster recovery drills.
• Support continuous monitoring and audit readiness by generating compliance reports and ensuring adherence to federal and DoD security frameworks.

Benefits

• paid time off
• medical/dental/vision insurance
• 401(k)