EY
Cyber SDC - Privileged Access Management - Manager - Location OPEN
EY, Louisville, Kentucky, us, 40201
Cyber SDC - Privileged Access Management - Manager - Location OPEN
4 days ago - Be among the first 25 applicants.
Get AI-powered advice on this job and more exclusive features.
Pay Base salary range: $106,800.00/yr – $194,800.00/yr.
Location: Anywhere in Country.
Job Overview At EY, we’reall in to shape your future with confidence. We help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help build a better working world.
The role is part of EY’s Identity and Access Management (IAM) services, focusing on privilege and secret management solutions. You will design, engineer, maintain, and troubleshoot diverse privilege and secret management solutions, enabling clients to safeguard complex enterprise identity environments.
Join a team of cybersecurity professionals using cutting‑edge tools to address pressing security challenges around the globe.
Key Responsibilities
Develop privilege and secret access management controls using CyberArk, BeyondTrust, HashiCorp Vault, and Delinea solutions.
Oversee design and implementation of privileged access and secret management solutions.
Assist with privilege and secret management requirements gathering and define enterprise‑level use cases.
Configure and optimize discover tools for privilege accounts, services, SSH keys, and tasks (CyberArk, HashiCorp, Delinea, BeyondTrust) including auto‑detection and auto‑onboarding.
Manage onboarding of target systems such as Windows, Linux, Unix accounts, databases (Oracle, MS SQL, Redis cache) and integration with DevOps platforms (Ansible, Puppet, Jenkins, Kubernetes, OpenShift, GitHub, GitLab, Docker).
Have knowledge of modern cloud vaults such as AWS Secrets Manager and Azure Key Vault.
Define and implement vaulting, rotation, and heartbeat policies for human and non‑human identities; enable SSH key and password rotation, check‑out/check‑in, dual control, and break‑glass.
Participate in self‑service design and implementation of privilege or secrets lifecycle management using enterprise identity governance solutions (creation, management, certification, deletion).
Develop governance processes for non‑human identity management.
Develop policies for endpoint management solutions including Windows workstations, MacOS, Linux and Unix servers.
Skills and Attributes for Success
Proven experience integrating, deploying, and configuring PAM and secret management technologies with strong focus on CyberArk and familiarity with other IAM solutions such as Saviynt, SailPoint, Entra.
In‑depth knowledge of privilege access management frameworks and ability to guide their integration into existing applications.
Practical expertise in developing technology stacks for CyberArk, HashiCorp Vault, BeyondTrust, and Delinea.
Proficiency in implementing, managing, and maintaining enterprise‑level privileged access and secret management tools.
Solid understanding of enterprise directory services (AD, Azure AD, LDAP) and experience implementing MFA and SSO solutions.
Strong problem‑solving and analytical skills; ability to translate business requirements into technical specifications and execute technical deliveries.
Track record of delivering high‑quality client services and work products within expected timeframes.
Excellent documentation skills, including procedures, process documentation, and user documentation related to IAM applications.
Required Qualifications
Bachelor’s degree in a related field and ~8 years of related work experience OR graduate degree and ~3 years of related work experience.
Experience with PAM architecture and development within CyberArk, HashiCorp, or other PAM solutions.
Hands‑on experience with CyberArk Conjur and HashiCorp Vault usage and functionality.
A valid driver’s license in the US and/or valid passport; willingness and ability to travel.
Preferred Qualifications
Professional certifications in Identity & Access Management (CISSP, CISM) or vendor certifications (CyberArk CDE, Hashi Vault Certified Implementation Engineer).
Familiarity with additional IAM technologies and tools such as SailPoint, ForgeRock, Ping Identity, RSA.
Experience working with cloud platforms like AWS, Azure, or Google Cloud.
Understanding of regulatory compliance frameworks (GDPR, HIPAA, NIST, ISO 27001).
Prior experience providing PAM services to clients in various industries.
Strong interpersonal and communication skills for client and cross‑functional collaboration.
We Look For Intellectually curious individuals with a genuine passion for cyber security, eager to bring innovative ideas that make lasting differences. You should be confident in both presentation and technical abilities and open to growth as a leading expert.
What We Offer At EY, we provide future‑focused skills development and world‑class experiences across a flexible, inclusive environment.
A comprehensive compensation and benefits package with performance‑based rewards and a broad range of medical, dental, pension, 401(k), and paid time off options.
Hybrid model of work: most client‑serving roles are required to be in‑person 40‑60% of the time during engagements.
Flexible vacation policy based on personal circumstances, along with EY Paid Holidays, Winter/Summer breaks, personal/family care, and other leaves.
Are you ready to shape your future with confidence? Apply today.
EY accepts applications for this position on an ongoing basis.
For those living in California, please click here for additional information.
Equal Employment Opportunity EY places high ethical standards and integrity and expects all candidates to demonstrate these qualities.
EY is committed to providing equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis, including arrest and conviction records, in accordance with applicable law.
EY is committed to providing reasonable accommodation to qualified individuals with disabilities, including veterans with disabilities. If you have a disability and need assistance applying online or requesting an accommodation, please call 1‑800‑EY‑HELP3 for assistance.
Seniority Level
Mid‑Senior level
Employment Type
Full‑time
Job Function
Information Technology
Industries
Professional Services
Referrals increase your chances of interviewing at EY by 2x.
#J-18808-Ljbffr
Get AI-powered advice on this job and more exclusive features.
Pay Base salary range: $106,800.00/yr – $194,800.00/yr.
Location: Anywhere in Country.
Job Overview At EY, we’reall in to shape your future with confidence. We help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help build a better working world.
The role is part of EY’s Identity and Access Management (IAM) services, focusing on privilege and secret management solutions. You will design, engineer, maintain, and troubleshoot diverse privilege and secret management solutions, enabling clients to safeguard complex enterprise identity environments.
Join a team of cybersecurity professionals using cutting‑edge tools to address pressing security challenges around the globe.
Key Responsibilities
Develop privilege and secret access management controls using CyberArk, BeyondTrust, HashiCorp Vault, and Delinea solutions.
Oversee design and implementation of privileged access and secret management solutions.
Assist with privilege and secret management requirements gathering and define enterprise‑level use cases.
Configure and optimize discover tools for privilege accounts, services, SSH keys, and tasks (CyberArk, HashiCorp, Delinea, BeyondTrust) including auto‑detection and auto‑onboarding.
Manage onboarding of target systems such as Windows, Linux, Unix accounts, databases (Oracle, MS SQL, Redis cache) and integration with DevOps platforms (Ansible, Puppet, Jenkins, Kubernetes, OpenShift, GitHub, GitLab, Docker).
Have knowledge of modern cloud vaults such as AWS Secrets Manager and Azure Key Vault.
Define and implement vaulting, rotation, and heartbeat policies for human and non‑human identities; enable SSH key and password rotation, check‑out/check‑in, dual control, and break‑glass.
Participate in self‑service design and implementation of privilege or secrets lifecycle management using enterprise identity governance solutions (creation, management, certification, deletion).
Develop governance processes for non‑human identity management.
Develop policies for endpoint management solutions including Windows workstations, MacOS, Linux and Unix servers.
Skills and Attributes for Success
Proven experience integrating, deploying, and configuring PAM and secret management technologies with strong focus on CyberArk and familiarity with other IAM solutions such as Saviynt, SailPoint, Entra.
In‑depth knowledge of privilege access management frameworks and ability to guide their integration into existing applications.
Practical expertise in developing technology stacks for CyberArk, HashiCorp Vault, BeyondTrust, and Delinea.
Proficiency in implementing, managing, and maintaining enterprise‑level privileged access and secret management tools.
Solid understanding of enterprise directory services (AD, Azure AD, LDAP) and experience implementing MFA and SSO solutions.
Strong problem‑solving and analytical skills; ability to translate business requirements into technical specifications and execute technical deliveries.
Track record of delivering high‑quality client services and work products within expected timeframes.
Excellent documentation skills, including procedures, process documentation, and user documentation related to IAM applications.
Required Qualifications
Bachelor’s degree in a related field and ~8 years of related work experience OR graduate degree and ~3 years of related work experience.
Experience with PAM architecture and development within CyberArk, HashiCorp, or other PAM solutions.
Hands‑on experience with CyberArk Conjur and HashiCorp Vault usage and functionality.
A valid driver’s license in the US and/or valid passport; willingness and ability to travel.
Preferred Qualifications
Professional certifications in Identity & Access Management (CISSP, CISM) or vendor certifications (CyberArk CDE, Hashi Vault Certified Implementation Engineer).
Familiarity with additional IAM technologies and tools such as SailPoint, ForgeRock, Ping Identity, RSA.
Experience working with cloud platforms like AWS, Azure, or Google Cloud.
Understanding of regulatory compliance frameworks (GDPR, HIPAA, NIST, ISO 27001).
Prior experience providing PAM services to clients in various industries.
Strong interpersonal and communication skills for client and cross‑functional collaboration.
We Look For Intellectually curious individuals with a genuine passion for cyber security, eager to bring innovative ideas that make lasting differences. You should be confident in both presentation and technical abilities and open to growth as a leading expert.
What We Offer At EY, we provide future‑focused skills development and world‑class experiences across a flexible, inclusive environment.
A comprehensive compensation and benefits package with performance‑based rewards and a broad range of medical, dental, pension, 401(k), and paid time off options.
Hybrid model of work: most client‑serving roles are required to be in‑person 40‑60% of the time during engagements.
Flexible vacation policy based on personal circumstances, along with EY Paid Holidays, Winter/Summer breaks, personal/family care, and other leaves.
Are you ready to shape your future with confidence? Apply today.
EY accepts applications for this position on an ongoing basis.
For those living in California, please click here for additional information.
Equal Employment Opportunity EY places high ethical standards and integrity and expects all candidates to demonstrate these qualities.
EY is committed to providing equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis, including arrest and conviction records, in accordance with applicable law.
EY is committed to providing reasonable accommodation to qualified individuals with disabilities, including veterans with disabilities. If you have a disability and need assistance applying online or requesting an accommodation, please call 1‑800‑EY‑HELP3 for assistance.
Seniority Level
Mid‑Senior level
Employment Type
Full‑time
Job Function
Information Technology
Industries
Professional Services
Referrals increase your chances of interviewing at EY by 2x.
#J-18808-Ljbffr