PAM Architect

S2S Soft is a Global IT Solutions and Services company with unmatched expertise spread across various Industrial Internet like IT Staff, Document Management, Software Development, Mechanical Design and Independent Software Vendors. Our clients have relied on us for providing Technology initiatives and support for their business processes in the areas of Enterprise Application Management, Custom Application Management, Business Intelligence & EAI, Infrastructure Management & Security and Quality Assurance & Testing Services.

S2S Soft understands the unique challenges faced by various industries. Through hands on experience earned from different client engagements, we enable our customers to address their challenges with tailor made solutions best suited to their present systems. With a firm eye on Return on Investments of our customer, we conceive, build and deploy solutions that are robust, scalable and yet flexible. We partner with our clients on their long-term initiatives by providing real value while demonstrating high level of professionalism and ethics metus.

Hi

Hope you are doing good.

If you are interested kindly review and reply with your recent resume along with your hourly pay rate expectation.

Role: PAM Architect

Job Location: Seattle, Washington or Overland Park, Kansas - Onsite

Duration: Contract

Job Description:

We are seeking an experienced IAM/PAM Architect with 14 years of expertise in Identity and Access Management (IAM) and Privileged Access Management (PAM). The ideal candidate will have extensive hands-on experience in designing and architecting solutions with CyberArk, Delinea, SailPoint, and Microsoft Entra ID (formerly Azure AD), Hashicorp for enterprise environments. This role demands a deep understanding of IAM/PAM frameworks, best practices, and the ability to align technology solutions with business requirements.Serve as the PAM Subject Matter Expert (SME) to guide customers in defining PAM strategy, roadmap, user onboarding processes, and engineering for medium to large enterprise environments.

• Collaborate with customer and vendor technical teams to analyze the current landscape, gather requirements, and plan phased PAM implementation and integration activities.
• Prepare enterprise-level PAM deployment and integration architecture and design.
• Lead the PAM implementation and integration team in environment setup, configuration, security policy definition, deployment, and integration activities.
• Design and implement robust IAM/PAM solutions using tools such as CyberArk, Delinea, SailPoint, and Entra ID, HashiCorp Boundary and HashiCorp Vault.
• Define architecture blueprints for privileged access security, identity lifecycle management, and secure authentication.
• Ensure that IAM/PAM solutions align with organizational security policies, compliance requirements, and industry standards.
• Drive end-to-end implementation of IAM/PAM projects, including system integration with enterprise applications, directories, and cloud platforms.
• Provide technical leadership to project teams and serve as a subject matter expert for IAM/PAM technologies.
• Mentor junior engineers and support teams to ensure the adoption of best practices.
• Collaborate with cross-functional teams to define and execute technical strategies and roadmaps.
• Enhance privileged access workflows and governance processes to improve security and compliance.
• Engage with business stakeholders to gather requirements and translate them into technical solutions.
• Present architectural designs and strategies to both technical and non-technical audiences.
• Stay updated on the latest trends and advancements in IAM/PAM technologies.
• Proactively identify opportunities to enhance security, improve user experience, and drive operational efficiency.
• 14 years of IT experience with a strong focus on IAM/PAM architecture and implementation.
• Demonstrated experience leading PAM product consulting, architecture, design, deployment, and integration activities.
• Expertise in preparing detailed implementation plans with well-defined activities and dependencies.
• Technical Expertise:
• Hands-on experience with
• Mandatory - CyberArk, Delinea, SailPoint IdentityNow/IIQ, and Microsoft Entra ID, HashiCorp Boundary and HashiCorp Vault
• Optional - Other leading IAM/PAM/SSO solutions.
• In-depth knowledge of CyberArk components: Vault, PSM, CPM, Conjur etc
• In-depth knowledge of Delinea components: Secret Server, Account Lifecycle Manager, Privilege Manager, Connection Manager, DevOps Secrets Vault etc.
• Proficiency in SailPoint Identity governance, including provisioning, access certifications, workflows, and connectors.
• Strong understanding of Entra ID features, such as SSO, Conditional Access, B2B/B2C configurations, and Identity Protection.
• Experience in designing and implementing IAM/PAM/SSO/RBAC projects in large customer environments.
• Familiarity with authentication protocols: SAML, OAuth, OpenID Connect, LDAP, and Kerberos.
• Experience integrating IAM/PAM solutions with cloud platforms (Azure, AWS, Google Cloud Platform).
• Deep understanding of PAM use cases, features, processes, components, services, and dependencies.
• Solid knowledge of Active Directory, LDAP, databases, SQL, and scripting (e.g., PowerShell, Python) for PAM integrations.
• Excellent communication and leadership skills, with the ability to manage and mentor teams.
• Exceptional client-facing and presentation skills, with the ability to articulate technical concepts to diverse audiences.
• Proven ability to work under tight deadlines and manage multiple priorities effectively.
• Bachelor's degree preferably in Computer Science or Information Systems and /or equivalent formal training or work experience.
• Certification in CISSP, ABAC, RBAC, ITIL, MCSE, CISM, CISA, PAM, MCSA, OSCP

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.