PAM Engineer

Title: PAM Engineer

Location: Riyadh, Saudi Arabia

About Accenture

Accenture is a global professional services company with leading capabilities in digital, cloud and security. Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Song, Technology and Operations services — all powered by the world’s largest network of Advanced Technology and Intelligent Operations centers. Our 742,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries.

About Accenture Security

Join Accenture Security to pioneer security solutions that blend risk strategy, digital identity, cyber defense, application security and managed services. Using the coolest next-gen tech, you’ll have every chance to stay one step ahead of cybercrime and out-hack the hackers.

Accenture Security provides comprehensive security services – from security strategy development to business transformation, to managed security services – on demand and at a global scale to help mitigate risks and take full advantage of advanced technologies and proven risk management models.

Roles & Responsibilities

• PAM Solution Design: Design and implement Privileged Access Management solutions, including privileged account management, session monitoring, and credential vaulting. Collaborate with cross-functional teams to ensure PAM controls align with business requirements and industry best practices.

• Privileged Account Management: Develop and enforce policies and procedures for managing privileged accounts across the organization. Implement mechanisms for secure provisioning, deprovisioning, and rotation of privileged account credentials.

• Access Control and Least Privilege: Implement controls to enforce the principle of least privilege and minimize the risk of unauthorized access. Define and enforce access policies, roles, and permissions for privileged accounts to ensure appropriate access levels.

• Session Monitoring and Recording: Configure session monitoring solutions to track and record activities performed by privileged users. Analyze session logs for suspicious or non-compliant activities and initiate appropriate actions.

• Credential Vaulting: Implement secure credential storage and management solutions to protect privileged account credentials. Ensure encryption, access controls, and auditing mechanisms are in place to safeguard stored credentials.

• Privileged Access Reviews and Audits: Conduct periodic reviews and audits of privileged access rights and activities. Identify and remediate any access anomalies or policy violations within the PAM framework.

• Integration and Automation: Integrate PAM solutions with other security technologies and systems, such as identity and access management (IAM) platforms and security information and event management (SIEM) systems. Automate PAM processes and workflows to enhance efficiency and reduce manual errors.

• Security Incident Response: Participate in security incident response activities related to privileged access. Investigate security incidents involving privileged accounts, coordinate response efforts, and implement necessary remediation measures.

• PAM Policy and Governance: Develop and maintain PAM policies, standards, and procedures. Stay up to date with evolving PAM technologies, industry trends, and regulatory requirements related to privileged access.

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field. Relevant certifications such as Certified Information Systems Security Professional (CISSP) or Certified Privileged Access Management Professional (CPAMP) are highly desirable.

• 10+ years of experience in IT Security, 5+ years of experience as a PAM Security Engineer, IAM Engineer, or a similar role, with a focus on privileged access management.

• Strong knowledge of Privileged Access Management principles, practices, and technologies, including privileged account management, session monitoring, and credential vaulting.

• Familiarity with industry-leading PAM solutions such as CyberArk, BeyondTrust, or Thycotic.

• Experience with access control mechanisms, least privilege principles, and role-based access control (RBAC).

• Knowledge of security compliance standards and regulations, such as GDPR, HIPAA, and PCI DSS, related to privileged access.

• Proficiency in integrating PAM solutions with IAM platforms and SIEM systems.

• Strong problem-solving and analytical skills, with the ability to identify and mitigate risks associated with privileged access.

• Excellent communication and collaboration skills to work effectively with cross-functional teams and stakeholders.

• Up-to-date knowledge of emerging PAM technologies, security threats, vulnerabilities, and industry trends.

• Strong technical skills and experience in architecting and implementing at least one or more solutions such as SailPoint IIQ, SailPoint IdentityNow, One Identity, IBM IGI, Saviynt, ForgeRock, Okta, Microsoft Entra ID, Ping Identity, etc.

• Strong technical skills and experience in architecting and implementing at least one or more PAM solutions such as Beyond Trust PasswordSafe, Beyond Trust Privileged Remote Access, CyberArk, CyberArk Secrets Manager, Delinea, etc.

• Experience with cloud platforms such as Azure, OCI, GCP, Alibaba.

• Experience in developing technical documentation such as technical architecture, operational guides, end-user guides, etc.

• Proficient with Microsoft Office suite, especially Word, Excel, and PowerPoint.

• Experience with project management, issue trackers, and budget management tools.

• Understanding of Agile methodology.

• Ability to work in highly dynamic project teams, proactive facilitation, coordination, and negotiation skills.

• Ability to manage clients’ and project status reporting with clients’ project teams and leadership.

• Preferred product certifications such as SailPoint IIQ, ForgeRock, Ping Identity, Microsoft Entra ID, BeyondTrust, Delinea, CyberArk, etc.

• Preferred professional certification such as Certified Identity and Access Manager (CIAM) or Certified Identity Management Professional (CIMP) or other Cybersecurity or cloud certifications.

Why join us?

• We offer a transparent, fast-paced approach to career progression, with a focus on your strengths and continuous coaching from senior colleagues.

• You will benefit from working alongside Accenture experts who are solving some of the biggest industry challenges with innovative thinking and pioneering tools.

• Flexible work arrangements and a range of benefits including competitive rewards.

• You will have access to state-of-the-art technology that will give you the opportunity to deepen your existing skills even as you help create the latest business trends.

• You will also have opportunities to make a difference to the communities in which we work and live.

Next Steps

If this sounds like the ideal role, career, and company for you, click below to apply.

To learn more about life @AccentureMiddleEast, follow us on social media and keep up with our latest news.

Equal Employment Opportunity Statement

All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.

Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process.

Accenture is committed to providing veteran employment opportunities to our service men and women.