Senior PAM Engineer (Zero Trust)

Leidos•Tampa, FL

About The Position

Leidos has an immediate need for a PAM Engineer to join our team executing Wave 2 of the USSOCOM Zero Trust Integration effort. This role is critical to Line of Effort 2, focusing on the deployment and operationalization of an enterprise-wide Privileged Access Management (PAM) solution to secure the NIPR, SIPR, and Top-Secret network enclaves. The ideal candidate will be responsible for vaulting privileged credentials, enforcing Just-In-Time (JIT) access, and integrating the PAM architecture with the broader Zero Trust ecosystem. TO BE CONSIDERED YOU MUST HAVE AN ACTIVE TOP SECRET CLEARANCE WITH SCI ELIGIBILITY. Key Responsibilities PAM Solution Deployment: Lead the installation, configuration, and technical implementation of the enterprise PAM solution (Delinea focus) across multiple network enclaves. Credential Vaulting: Discover, inventory, and onboard all known privileged user, administrator, and service accounts into the secure PAM vault. Policy Enforcement: Design and configure policies for Just-In-Time (JIT) access, session recording, and privileged session monitoring to ensure zero standing privileges. Infrastructure Integration: Develop scripts and API integrations to connect the PAM solution with the existing Splunk SIEM for centralized logging and the Identity Governance (IGA) platform for lifecycle management. Security Compliance: Support the RMF accreditation process by developing Low-Level Design (LLD) documents, System Security Plans (SSP), and Standard Operating Procedures (SOPs) to achieve Authority to Operate (ATO). Enterprise Rollout: Manage the expansion of PAM policies from initial pilot groups to full enterprise enforcement for all privileged users.

Requirements

TO BE CONSIDERED YOU MUST HAVE AN ACTIVE TOP SECRET CLEARANCE WITH SCI ELIGIBILITY.
DoD 8570 Compliance: Must hold an IAT Level II certification (e.g., Security+ CE, CCNA Security) or higher.
Technical Skills: Deep expertise in Privileged Access Management (PAM) architectures and "Zero Standing Privileges" concepts.
Experience implementing Just-In-Time (JIT) access workflows.
Proficiency in integrating PAM tools with Active Directory, SIEM (Splunk), and IGA tools.
Education: MA/MS
Years: 10+

Nice To Haves

Specific Certifications: Delinea Certified Administrator is highly preferred/required.

Responsibilities

PAM Solution Deployment: Lead the installation, configuration, and technical implementation of the enterprise PAM solution (Delinea focus) across multiple network enclaves.
Credential Vaulting: Discover, inventory, and onboard all known privileged user, administrator, and service accounts into the secure PAM vault.
Policy Enforcement: Design and configure policies for Just-In-Time (JIT) access, session recording, and privileged session monitoring to ensure zero standing privileges.
Infrastructure Integration: Develop scripts and API integrations to connect the PAM solution with the existing Splunk SIEM for centralized logging and the Identity Governance (IGA) platform for lifecycle management.
Security Compliance: Support the RMF accreditation process by developing Low-Level Design (LLD) documents, System Security Plans (SSP), and Standard Operating Procedures (SOPs) to achieve Authority to Operate (ATO).
Enterprise Rollout: Manage the expansion of PAM policies from initial pilot groups to full enterprise enforcement for all privileged users.

Benefits

Pay and benefits are fundamental to any career decision.
That's why we craft compensation packages that reflect the importance of the work we do for our customers.
Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement.
More details are available here.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume