NO C2C / NO 1099
W2 ONLY (Direct Hire through Vendor)
LOCAL NYC / Tri-State candidates only
Candidate must work onsite first month without exception
We are seeking an experienced Privileged Access Management (PAM) Engineer to strengthen enterprise identity security across Active Directory, Entra ID, Linux, and multi-cloud environments (Azure, AWS, Google Cloud Platform) . This role focuses on vaulting, endpoint privilege management, identity hygiene, and zero-trust security architecture .
You will design and enforce least-privilege access, eliminate standing admin rights, and integrate PAM controls across hybrid and cloud platforms.
Key Responsibilities:Privileged Identity Security
Administer enterprise PAM vaulting platforms across AD, Entra ID, Linux, Azure, AWS, and Google Cloud Platform
Implement credential rotation and vaulting for admins, service accounts, and cloud root accounts
Enforce Just-In-Time (JIT), approval-based privileged access
Endpoint Privilege Management
Implement least-privilege controls for Windows, Linux, and macOS
Replace standing admin access with controlled privilege elevation
Apply application control to reduce ransomware and malware risks
Identity Hygiene & Hardening
Clean up unauthorized local admin accounts
Monitor stale identities, excessive permissions, and privileged roles
Implement ITDR (Identity Threat Detection & Response) practices
Security Architecture
Support Zero Trust initiatives
Align PAM controls with NIST and enterprise security standards
Drive MFA, passwordless authentication, and SSO adoption
Cloud Identity & IAM
Manage Azure AD (Entra ID), AWS IAM, and Google Cloud Platform IAM privileged roles
Integrate cloud identities with PAM vaulting and session monitoring
Governance & Documentation
Maintain runbooks, diagrams, and operational documentation
Support audit, compliance, and risk teams with reporting
10+ years in IAM / PAM / Security Engineering
Hands-on experience with AD, Entra ID, Linux
Strong PAM vaulting & endpoint privilege management expertise
Experience with MFA, SSO, Kerberos, certificate-based auth
Knowledge of Zero Trust, NIST, ITDR, CIS controls
Scripting: PowerShell / Python / Bash / Terraform
Excellent documentation and communication skills
Multi-cloud PAM experience (Azure, AWS, Google Cloud Platform)
Entra ID PIM & Conditional Access
CI/CD or ITSM integration with PAM tools
Certifications (CyberArk, CISSP, CISM, CCSP, Azure/AWS Security)
If you enjoy locking down privileged access , reducing attack surface, and driving enterprise-grade identity security - this is your seat at the table.
For applications and inquiries, contact: hirings@openkyber.com
Job Summary: The Systems Testing Specialist is responsible for planning, organizing, and executing testing efforts for large systems... ...automated tests into CI/CD pipelines. - Conducts performance, stress, and load testing. - Collaborates with developers,...
...company of First Coast Mulch, EZ Mulch, and Innovative Mulching, is seeking a detail-oriented and motivated Accounting Intern to join our team. This internship offers the opportunity to gain hands-on experience in a dynamic, multi-entity organization, working directly...
...Location: Remote (Must work Mountain Standard Time business hours) Duration: 4 month contract, possible for extension Hours... ...Compensation Range: $40-50/hr W2 We are seeking a strategic Marketing Manager to manage cross-functional marketing campaigns that support...
...The City of Matthews Missouri is seeking applications for a water and wastewater maintenance operator to help with city maintenance operations. A variety of skilled technical maintenance work in operation, water treatment, wastewater treatment, distribution and collection...
...excellent customer service skills? Join our vibrant team as a Banquet Server and be part of creating memorable experiences for our guests.... ...Davidson is like nowhere else. Its less of a job, more of a calling. Its part career, part revolution. Because whatever you do...