NO C2C / NO 1099
W2 ONLY (Direct Hire through Vendor)
LOCAL NYC / Tri-State candidates only
Candidate must work onsite first month without exception
We are seeking an experienced Privileged Access Management (PAM) Engineer to strengthen enterprise identity security across Active Directory, Entra ID, Linux, and multi-cloud environments (Azure, AWS, Google Cloud Platform) . This role focuses on vaulting, endpoint privilege management, identity hygiene, and zero-trust security architecture .
You will design and enforce least-privilege access, eliminate standing admin rights, and integrate PAM controls across hybrid and cloud platforms.
Key Responsibilities:Privileged Identity Security
Administer enterprise PAM vaulting platforms across AD, Entra ID, Linux, Azure, AWS, and Google Cloud Platform
Implement credential rotation and vaulting for admins, service accounts, and cloud root accounts
Enforce Just-In-Time (JIT), approval-based privileged access
Endpoint Privilege Management
Implement least-privilege controls for Windows, Linux, and macOS
Replace standing admin access with controlled privilege elevation
Apply application control to reduce ransomware and malware risks
Identity Hygiene & Hardening
Clean up unauthorized local admin accounts
Monitor stale identities, excessive permissions, and privileged roles
Implement ITDR (Identity Threat Detection & Response) practices
Security Architecture
Support Zero Trust initiatives
Align PAM controls with NIST and enterprise security standards
Drive MFA, passwordless authentication, and SSO adoption
Cloud Identity & IAM
Manage Azure AD (Entra ID), AWS IAM, and Google Cloud Platform IAM privileged roles
Integrate cloud identities with PAM vaulting and session monitoring
Governance & Documentation
Maintain runbooks, diagrams, and operational documentation
Support audit, compliance, and risk teams with reporting
10+ years in IAM / PAM / Security Engineering
Hands-on experience with AD, Entra ID, Linux
Strong PAM vaulting & endpoint privilege management expertise
Experience with MFA, SSO, Kerberos, certificate-based auth
Knowledge of Zero Trust, NIST, ITDR, CIS controls
Scripting: PowerShell / Python / Bash / Terraform
Excellent documentation and communication skills
Multi-cloud PAM experience (Azure, AWS, Google Cloud Platform)
Entra ID PIM & Conditional Access
CI/CD or ITSM integration with PAM tools
Certifications (CyberArk, CISSP, CISM, CCSP, Azure/AWS Security)
If you enjoy locking down privileged access , reducing attack surface, and driving enterprise-grade identity security - this is your seat at the table.
For applications and inquiries, contact: hirings@openkyber.com
...Job Title Senior Associate - Oracle Cloud EPM Analyst Job Category Business Application Consulting Level Senior Associate Specialty/Competency Oracle Industry/... ...: PwC does not intend to hire experienced or entry level job seekers who will need, now or in the future...
Sephora is seeking a Marketing Associate for Email Operations to join its remote team in the United States. This role involves managing and executing email marketing campaigns, ensuring accuracy and quality, and collaborating with various internal teams. The ideal candidate...
We at Zuper are looking for a full-stack developer for the professional services team who will be responsible for the following roles and responsibilities. Collaborate with the customer experience team to develop custom software solutions using Zuper products as per...
...The Bridgeton Police Department is seeking to establish an eligibility list for full time Police Officers to perform police patrol,... ...and gathering of physical evidence. Prepares all reports and records as required by departmental policy in a professional manner and...
...Resort via telephone, written communication and personal sales calls. Evaluate, negotiate, book and service business. Conduct site tours and entertain clients. Accumulate and evaluate data to recommend alternative and/or future business proposals. Maintain and...