
- Senior
- Ufficio in Pune
The PAM Lead is responsible for designing, implementing, and managing enterprise-grade Privileged Access Management (PAM) solutions across global environments. This role ensures secure access to critical systems by enforcing policies, automating account lifecycle processes, and aligning with regulatory standards. The PAM Lead will also build and mentor a high-performing team, support incident response, and collaborate cross-functionally to integrate PAM with broader identity and security initiatives.
What You’ll Do:
1. PAM Strategy & Implementation
• Lead the design, deployment, and management of PAM solutions using tools such as CyberArk, BeyondTrust, HashiCorp Vault, or similar.
• Define and enforce policies for privileged account lifecycle management, credential vaulting, session monitoring, and just-in-time access.
• Drive automation of provisioning/de-provisioning of privileged accounts across on-premises, cloud, and hybrid environments.
2. Incident Response & Operational Support
• Act as the escalation point for privileged access-related incidents and service account issues.
• Collaborate with server, application, and security teams to troubleshoot and resolve access issues.
• Conduct root cause analysis and implement preventive measures.
3. Team Leadership & Development
• Build and lead a high-performing team of PAM engineers and analysts across global locations.
• Define team roles, responsibilities, and KPIs.
• Mentor and develop team members through training, coaching, and performance feedback.
4. Audit, Compliance & Governance
• Lead audit readiness and support internal/external audits related to privileged access.
• Manage access certification campaigns, policy enforcement, and remediation of audit findings.
• Ensure alignment with regulatory and industry standards such as SOX, ISO 27001, NIST, and PCI-DSS.
5. Cross-Functional Collaboration
• Partner with IAM, GRC, Infrastructure, and Application teams to align PAM with broader identity and security initiatives.
• Support integration with SSO solutions (e.g., Ping Identity) and Identity Governance platforms (e.g., Saviynt).
6. Infrastructure & Platform Knowledge
• Apply working knowledge of Windows, Unix/Linux, databases, and cloud platforms (AWS, Azure, GCP) to secure privileged access across diverse systems.
What You Bring
• Bachelor’s or master’s degree in computer science, Information Security, or related field.
• 7+ years of experience in Identity & Access Management, with 3+ years in a PAM leadership role.
• Hands-on experience with CyberArk, BeyondTrust, HashiCorp Vault, or equivalent.
• Strong understanding of privileged access risks, controls, and best practices.
• Experience with audit frameworks and regulatory compliance.
• Excellent communication, leadership, and stakeholder management skills.
• CyberArk Defender / Sentry / Guardian
• CISSP, CISM, or equivalent
• AWS/Azure Security Certifications
• ITIL or PMP (for program management experience)