Privileged Account Management Architect

Booz Allen Hamilton-posted 3 days ago
Full-time • Mid Level
Riverdale Park, MD
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

Privileged Account Management Architect The Opportunity: You know that the user is the last frontier for cybersecurity. It’s where the perimeter is drawn, and securing identities is pivotal in the fight against cybercriminals. As an Identity and Access Management (IAM) specialist, you have the skills and experience to keep hackers from taking data and breaking processes. We’re looking for someone like you to help our clients meet their missions without disruption. As an IAM engineer at Booz Allen, you’ll play a critical role in the world of IAM and Zero Trust. In this role, you’ll support large-scale IAM projects for our clients. You’ll interface with stakeholders and engineering teams to delve into the details and dependencies of critical processes and users’ roles within them. You’ll analyze the identity lifecycle, articulating access requirements and defining enterprise identity records. You’ll use your experience in IAM to design, deploy, and support systems that verify appropriate user privileges and manage credentials for accessing our clients’ most valuable assets. From single sign-on to privileged access systems, you’ll have the chance to implement enterprise-class solutions and stop adversaries in their tracks. Join us. The world can’t wait.

  • 5+ years of experience with IAM
  • Experience with privileged access management (PAM) solutions supporting secrets management, endpoint privilege elevation, and server-level session control, with a focus on meeting compliance requirements such as NIST, CIS, and HIPAA, and securing access in cloud-native and hybrid infrastructures
  • Experience implementing key PAM capabilities such as credential vaulting, just-in-time (JIT) access provisioning, session monitoring and recording, and automated credential rotation, to minimize attack surface and support least privilege access models
  • Experience with ICAM technologies such as SSO, MFA, PAM, IGA, AD, or LDAP
  • Experience with federation technologies such as SAML 2.0, OAuth 2.0, and OpenID Connect
  • Knowledge of PAM concepts, including just-enough access, and behavioral analytics
  • Knowledge of service account lifecycle management, privileged behavior analytics, managing credentials, VPN-less access to Windows, and Linux and UNIX servers
  • Active TS/SCI clearance; willingness to take a polygraph exam
  • HS diploma or GED
  • Experience architecting and deploying Delinea Secret Server, CyberArk, or BeyondTrust PAM with a focus on vault configuration, role-based access controls, automated password rotation, API integrations for seamless workflow automation, and designing high availability (HA) architectures for mission-critical environments
  • Experience with identity governance processes and entitlement management programs
  • Knowledge of system, network, application, and security architectures, cybersecurity solutions, key cyber processes such as incident handling, risk measurement, and change management, and key cyber threats, including nation state actors, malware or ransomware, command and control infrastructures, and mitigations
  • Ability to collaborate with the professional confidence and credibility to effectively engage and interact with technologists and leaders across the enterprise
  • Ability to quickly comprehend complex problems, draw logical conclusions, make sound decisions, develop solutions, and drive closure
  • Possession of excellent problem-solving skills
  • Possession of excellent verbal and written communication skills
  • TS/SCI clearance with a polygraph
  • health
  • life
  • disability
  • financial
  • retirement benefits
  • paid leave
  • professional development
  • tuition assistance
  • work-life programs
  • dependent care
  • recognition awards program
Track Jobs with Teal

Job Search Resources

Resume Builder
Resume Examples
Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service