Apply on Employer Site

EY · 1 day ago

Cyber SDC - Privileged Access Management - Manager - Location OPEN

Pittsburgh, PA

Full-time

Hybrid

Senior Level, Lead/Staff

$107K/yr - $195K/yr

8+ years exp

EY is a globally connected powerhouse of diverse teams aiming to build a better working world. They are seeking a Manager in Privileged Access Management to design, engineer, and maintain various privilege management solutions, while collaborating with cybersecurity professionals to address pressing security challenges.

AccountingAdviceBusiness IntelligenceConsultingFinancial ServicesProfessional Services

Growth Opportunities

H1B Sponsor Likely

Responsibilities

Develop privilege and secret access management controls CyberArk, BeyondTrust, Hashi and Delian solution

Oversea the design and implementation of the privileged access and secret management solution

Assist with the privilege and secret management requirement gathering and define the use cases at the enterprise level

Configure and optimize discovery tools for privilege accounts, services, SSH keys, and tasks (CyberArk, Hashi Corp, Delinea, BeyondTrust), including auto-detection and auto-onboarding

Manage onboarding of the target systems such as Windows, Linux and Unix accounts, Databases (Oracle, MS SQL, Redish cache) and integration of the DevOps solutions such as Ansible, Puppet, Jenkins, Kubernetes. OpenShift, GitHub, Gitlab, Docker, Ansible platforms

Knowledge of the modern cloud vaults such as AWS secret manager and Azure key vault

Define and implement vaulting, rotation, and heartbeat policies for human and non-human identities; enable SSH key and password rotation, check-out/check-in, dual control, and break-glass

Participate in the self-service design and implementation of the privilege or secrets life cycle management using enterprise identity governance solutions (creation, management, certification, deletion)

Develop and establish governance processes for non-human identity management

Develop policies for the end point management solutions including Windows workstations, Mac OS, Linux and Unix servers

Qualification

CyberArkPrivilege Access ManagementHashiCorp VaultSecret ManagementActive DirectoryAzure ADMFA ImplementationSSO SolutionsCloud IAM SolutionsAnalytical skillsProblem-solving skillsDocumentation skillsInterpersonal skillsCommunication skills

Required

A bachelor's degree in a related field and approximately 8 years of related work experience; or a graduate degree and approximately 3 years of related work experience

Experience with PAM architecture and development within CyberArk, HashiCorp, or, other PAM Solutions

Well-versed and hands-on experience with CyberArk Conjur and HashiCorp Vault usage and functionality

A valid driver's license in the US and/or a valid passport are required; Willingness and ability to travel

Proven experience in integrating, deploying, and configuring PAM and Secret management Technologies, with a strong focus on CyberArk (vault, privilege cloud, secure, infrastructure, Endpoint access management and Conjur) and familiarity with other IAM solutions like Saviynt, SailPoint, Entra

In-depth knowledge of privilege access management frameworks, and the ability to offer guidance on their integration into existing applications

Practical expertise in developing CyberArk technology tech stack, HashiCorp vault, BeyondTrust and Delina experience

Proficiency in implementing, managing, and maintaining enterprise-level Privilege access management and secret management tools

Solid understanding of enterprise directory services such as Active Directory, Azure AD, and LDAP, as well as experience in implementing MFA and SSO solutions

Strong problem-solving and analytical skills, with the ability to translate business requirements into technical specifications and execute technical deliveries effectively

A track record of delivering high-quality client services and work products within expected timeframes

Excellent documentation skills, including the creation of procedures, process documentation, and user documentation related to IAM applications

Preferred

Professional certifications in Identity & Access Management, such as CISSP, CISM, or specific vendor certifications like CyberArk CDE, Hashi Vault Certified Implementation Engineer

Familiarity with additional IAM technologies and tools, including SailPoint, ForgeRock, Ping Identity, RSA, etc

Knowledge of cloud-based IAM solutions and experience working with cloud platforms like AWS, Azure, or Google Cloud

Understanding of regulatory compliance frameworks and industry standards related to IAM, such as GDPR, HIPAA, NIST, or ISO 27001

Prior experience in providing PAM services to clients from various industries, demonstrating versatility and adaptability in addressing diverse IAM challenges

Strong interpersonal and communication skills, with the ability to collaborate effectively with clients and cross-functional teams to present solution designs, options, and innovations

Benefits

Medical and dental coverage

Pension and 401(k) plans

Wide range of paid time off options

Flexible vacation policy

Designated EY Paid Holidays

Winter/Summer breaks

Personal/Family Care

Other leaves of absence when needed to support your physical, financial, and emotional well-being

Company

EY

Glassdoor3.8

EY is building a better working world by creating new value for clients, people, society, the planet, while building trust in the capital markets.

Founded in 1989

London, England, GBR

10001+ employees

http://www.ey.com

H1B Sponsorship

EY has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (10242)

2024 (9877)

2023 (10966)

2022 (9394)

2021 (5652)

2020 (8849)