Privileged Access Management Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

V Group Inc. · 23 hours ago

Privileged Access Management Engineer

positionNew York, NY
timeContract
remoteHybrid
seniorityMid, Senior Level
date3+ years exp

V Group Inc. is an NJ-based IT Services and Products Company, and they are seeking a skilled Privileged Access Management (PAM) Engineer to join their cybersecurity team. The role focuses on securing privileged identities across various platforms and implementing controls to ensure appropriate access for administrators.

ConsultingE-CommerceInformation TechnologyMobileSoftware
check
H1B Sponsor Likelynote
Hiring Manager
Amir Mohammad
linkedin

Responsibilities

Administer and enhance the corporate vaulting platform to manage privileged credentials across AD, Entra, Linux, and cloud platforms (Azure, AWS, GCP)
Implement credential randomization for local/built-in administrator accounts, service accounts, and cloud root/admin accounts
Ensure time-bound, approval-based access for administrators following least privilege and just-in-time (JIT) principles
Implement and maintain endpoint least-privilege policies across Windows, Linux, and macOS environments
Replace standing local admin rights with controlled privilege elevation workflows
Apply application control and privilege granularity to reduce risks from malware, ransomware, and insider threats
Partner with desktop engineering teams to improve usability while enforcing strong endpoint controls
Lead local administrator cleanup projects and enforce removal of unauthorized admin rights
Harden Entra ID and cloud tenant hygiene by monitoring stale accounts, privileged roles, and excessive permissions
Apply ITDR (Identity Threat Detection & Response) practices to detect and mitigate suspicious privileged activity across on-prem and cloud platforms
Contribute to enterprise Zero Trust architecture initiatives for hybrid and multi-cloud environments
Align privileged access controls with NIST standards and organizational policies
Drive adoption of passwordless authentication, MFA, and SSO for both on-prem and cloud privileged identities
Manage and monitor privileged roles and accounts in Azure AD (Entra ID), AWS IAM, and GCP IAM
Implement least-privilege design for cloud workloads, service principals, keys, and secrets
Integrate cloud platform identities with PAM vaulting, session recording, and access approval workflows
Collaborate with IGA teams to automate provisioning, deprovisioning, and recertification of privileged accounts across on-prem and cloud
Ensure privileged entitlements are tied to clear business justification and ownership
Create and maintain technical runbooks, architecture diagrams, and operational procedures
Provide reporting on privileged access usage, endpoint privilege management, hygiene metrics, and compliance results
Partner with audit, compliance, and risk teams to demonstrate control effectiveness

Qualification

Privileged Access ManagementActive DirectoryCloud PlatformsVaulting TechnologiesEndpoint Privilege ManagementMFAScripting SkillsZero Trust FrameworksDocumentation SkillsCommunication Skills

Required

3–5+ years of experience in PAM, IAM, or related security engineering roles
Hands-on experience with AD, Entra ID, Linux, and at least one major cloud platform (Azure, AWS, or GCP)
Strong knowledge of vaulting technologies and endpoint privilege management practices (least privilege, privilege elevation, application control)
Proficiency with authentication methods: MFA, SSO, passwordless, Kerberos, and certificate-based access
Familiarity with NIST 800-63B, Zero Trust frameworks, ITDR, and cloud security standards (CIS, CSA, etc.)
Strong scripting/automation skills (PowerShell, Python, Bash, Terraform, etc.)
Excellent documentation and communication abilities

Preferred

Experience securing privileged access in multi-cloud environments (Azure, AWS, GCP)
Knowledge of Entra ID Conditional Access, PIM, AWS IAM policies, and GCP IAM roles
Experience integrating PAM solutions with CI/CD pipelines, DevOps tools, or ITSM workflows
Industry certifications are a Plus (SailPoint, CISSP, CISM, CCSP, Azure Security Engineer, AWS Security Specialty, GIAC, etc.)

Company

V Group Inc.

twittertwittertwitter
company-logo
Since 1999, V Group Inc.
dateFounded in 1999
location
Cranbury, New Jersey, USA
people-size51-200 employees
web-link
http://www.vgroupinc.com

H1B Sponsorship

V Group Inc. has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (1)
2024 (1)
2023 (3)
2022 (1)
2020 (1)

Funding

Current Stage
Growth Stage

Leadership Team

leader-logo
Vijay Kumar Palandurkar
CEO
linkedin
Company data provided by crunchbase