Privileged Access Management Engineer bei CLS-Group
CLS-Group · Iselin, Vereinigte Staaten Von Amerika · Hybrid
- Professional
- Optionales Büro in Iselin
About CLS:
CLS is the trusted party at the centre of the global FX ecosystem. Utilized by thousands of counterparties, CLS makes FX safer, smoother and more cost effective. Trillions of dollars’ worth of currency flows through our systems each day.
Created by the market for the market, our unrivalled global settlement infrastructure reduces systemic risk and provides standardization for participants in many of the world’s most actively traded currencies. We deliver huge efficiencies and savings for our clients: in fact, our approach to multilateral netting shrinks funding requirements by over 96% on average, so clients can put their capital and resources to better use.
CLS products are designed to enable clients to manage risk most effectively across the full FX lifecycle – whether through more efficient processing tools or market intelligence derived from the largest single source of FX executed data available to the market.
Our ambition to make a positive difference starts with our people. Our values underpin everything that we do at CLS and define our working environment:
- Pivotal purpose
- Trusted guardian
- Targeted innovation
- Facilitate connections
- Delivering excellence
- Inclusive culture
Job Information:
- Functional title: Vice President, Privileged Access Management Engineer
- Department - IT Security
- Corporate level - Vice President
- Report to - Director, IT Security Specialist
- Location - Iselin, NJ (Hybrid Onsite 2x per week)
- Expected full-time salary range between $ 140,000- $170,000 + variable compensation + 401(k) match + benefits.
Note: Disclosure as required by NJ Pay Transparency Law of the expected salary compensation range for this role.
We are seeking a skilled PAM Engineer to join our team. The ideal candidate will have experience with Delinea (formerly Centrify/Thycotic) for Privileged Access Management (PAM),and will also be proficient in CyberArk and BeyondTrust if Delinea knowledge is not present. The role involves configuring, managing, and securing privileged access systems, as well as ensuring the integrity and security of sensitive systems and data.
Key Responsibilities:
PAM System Configuration & Management:
- Implement, configure, and manage Delinea(or CyberArk/BeyondTrust) systems to ensure secure privileged access management.
System Administration:
- Administer privileged access security solutions, including account provisioning, password management, session monitoring, and audit logging.
Integration and Customization:
- Integrate PAM tools with other enterprise security systems (SIEM, SSO, IGA etc.), customizing the systems as required to meet specific business needs.
Incident Response & Troubleshooting:
- Respond to incidents, monitor for suspicious activity, and troubleshoot any issues with PAM platforms.
Training & Knowledge Transfer:
- If Delinea experience is not present, take ownership of training and skill development through courses, certifications, and hands-on practice. Assist colleagues in the adoption and optimization of PAM solutions.
Compliance & Auditing:
- Ensure compliance with industry standards, regulations, and organizational policies. Perform regular audits and provide documentation of system access and security controls.
Collaboration:
- Work closely with security, infrastructure, and IT teams to understand requirements and ensure that PAM systems support security goals effectively.
Required Skills & Experience:
- Proven experience working with PAM technologies, particularly Delinea(preferred), CyberArk, or BeyondTrust.
- Strong understanding of privileged access management, identity and access management (IAM), and security protocols.
- Experience with integrating technology platforms with PAM solutions including but not limited to Linux, Windows, Active Directory, Hypervisors, Storage and Network devices
- Experience with configuring and maintaining privileged account management systems, including password management, session recording, and auditing logging.
- Knowledge of enterprise security frameworks and regulatory requirements such as GDPR, HIPAA, and PCI-DSS.
- Familiarity with integrating PAM systems into broader IT security architectures, including SIEM, SSO and IGA platforms.
- Solid troubleshooting skills and the ability to resolve complex technical issues.
- Familiarity with scripting or automation (e.g., PowerShell, Python) is a plus.
Desirable Qualifications:
- Certifications in PAM technologies(e.g., Delinea, CyberArk, BeyondTrust).
- Experience with network security, endpoint protection, or cloud security.
- Knowledge of IT infrastructure, operating systems, and directory services (e.g., Active Directory).
- Strong verbal and written communication skills, with the ability to communicate technical concepts to non-technical stakeholders.
Educational Requirements:
- A Bachelor’s degreein Computer Science, Information Technology, or a related field (or equivalent work experience).
Our commitment to employees:
At CLS, we celebrate inclusion and consider this to be one of our strongest assets. We are committed to fostering an environment in which everyone feels comfortable to be who they are, and inclusion is valued. All employees have access to our inclusive benefits, including:
- Holiday - UK/Asia: 25 holiday days and 3 ‘life days’ (in addition to bank holidays). US: 23 holiday days.
- 2 paid volunteer days so that you can actively support causes within your community that are important to you.
- Generous parental leave policies to ensure you can enjoy valuable time with your family.
- Parental transition coaching programmes and support services.
- Wellbeing and mental health support resources to ensure you are looking after yourself, and able to support others.
- Employee Networks (including our Women’s Forum, Black Employee Network and Pride Network) in support of our organisational commitment to embrace and always be learning more about inclusivity.
- Hybrid working to promote a healthy work/life balance, enabling employees to work collaboratively in the office when needed and work from home when they don’t.
- Active support of flexible working for all employees where possible.
- Monthly ‘Heads Down Days’ with no meetings across the whole company.
- Generous non-contributory pension provision for UK/Asia employees, and 401K match from CLS for US employees.
- Private medical insurance and dental coverage.
- Social events that give you opportunities to meet new people and broaden your network across the organisation.
- Annual flu vaccinations.
- Discounts and savings and cashback across a wide range of categories including health and retail for UK employees.
- Discounted Gym membership – Complete Body Gym Discount/Sweat equity program for US employees.
- All employees have access to Discover – our comprehensive learning platform with 1000+ courses from LinkedIn Learning.
- Access to frequent development sessions on a number of topics to help you be successful and develop your career at CLS.
