Thermo Fisher Scientific
Sr IT Security Engineer - PAM
Thermo Fisher Scientific, Frederick, Maryland, United States, 21701
Work Schedule
First Shift (Days)
Environmental Conditions
Office
Job Description
About the Role
This is an outstanding opportunity to join Thermo Fisher Scientific Inc., a global leader in science and technology, located in Frederick. As a Senior IT Security Engineer specializing in Privileged Access Management (PAM), you will lead ground-breaking initiatives across our vast enterprise. You will play a crucial role in crafting and optimizing our PAM strategies, ensuring the secure management of enterprise secrets.
Key Responsibilities
Strategic PAM Leadership & SME Functions
Own and drive PAM strategy for enterprise-wide privileged access domains and secrets management initiatives
Serve as primary SME for PAM tooling optimization, secrets hardening, and enterprise-scale deployment
Develop and implement annual PAM goals that align with organizational PMD objectives, with a focus on automation and efficiency.
Lead multi-functional PAM initiatives and represent the team in enterprise-wide security projects
Advanced Technical Operations & Automation
Architect and implement complex PAM solutions for enterprise-wide secrets management
Implement metrics and indicators to monitor PAM program efficiency
Craft and maintain enterprise-level privileged access controls and automated secrets management solutions
Drive automation initiatives for recurring PAM tasks and compliance reporting
Lead comprehensive risk assessments for privileged access environments
Communication & Collaborator Management
Simplify complex PAM concepts for non-technical audiences
Develop and present PAM materials and strategic recommendations to leadership
Build and own strong multi-functional relationships across IT and business units
Proactively communicate PAM posture updates to business collaborators
Required Qualifications
Education & Certifications
Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field (equivalent experience accepted)
Advanced PAM certifications required: CyberArk Certified Delivery Engineer, BeyondTrust Certified Professional, or equivalent
Additional security certifications preferred: CISSP, CISM, GSEC, or similar
Experience
6+ years of enterprise security experience with focus on privileged access management
4+ years of hands-on PAM operations experience in large-scale enterprise environments
3+ years of demonstrated leadership in sophisticated PAM implementations
Technical Skills
Expert-level knowledge of PAM principles and privileged access security frameworks
Advanced proficiency in enterprise PAM platforms (Secret Server, CyberArk, BeyondTrust)
Strong experience with directory services and identity management integration
Demonstrated ability to architect tool-agnostic PAM solutions
Experience with cloud PAM and DevOps secrets integration
Leadership & Consulting Skills
Outstanding influence and persuasion abilities with a track record of driving PAM change
Critical thinking and problem-solving skills to identify critical points for PAM transformation
Strong consulting and advisory skills with experience challenging existing practices
Superb communication abilities with capability to present complex PAM concepts to executive audiences
Proven mentorship and training capabilities
Cultural change leadership with experience overcoming organizational resistance
Specialized Proficiencies
Deep understanding of threats to privileged accounts and credential security
Experience with regulatory compliance requirements related to privileged access management
Knowledge of threat modeling and risk assessment methodologies
Familiarity with DevSecOps practices and automated PAM integration in CI/CD pipelines
Understanding of zero trust architecture principles and PAM implementation
What We Offer
Join our elite organization and pioneer PAM transformation across our global enterprise. Drive significant impact in privileged access security while developing innovative solutions for handling massive volumes of enterprise secrets. We provide competitive compensation, comprehensive benefits, leadership development opportunities, and the chance to become the shining light of PAM excellence!
Compensation and Benefits
The salary range estimated for this position based in Maryland is $113,500.00-$170,200.00.
This position may also be eligible to receive a variable annual bonus based on company, team, and/or individual performance results in accordance with company policy. We offer a comprehensive Total Rewards package that our U.S. colleagues and their families can count on, which includes:
A choice of national medical and dental plans, and a national vision plan, including health incentive programs
Employee assistance and family support programs, including commuter benefits and tuition reimbursement
At least 120 hours paid time off (PTO), 10 paid holidays annually, paid parental leave (3 weeks for bonding and 8 weeks for caregiver leave), accident and life insurance, and short- and long-term disability in accordance with company policy
Retirement and savings programs, such as our competitive 401(k) U.S. retirement savings plan
Employees' Stock Purchase Plan (ESPP) offers eligible colleagues the opportunity to purchase company stock at a discount
For more information on our benefits, please visit: https://jobs.thermofisher.com/global/en/total-rewards
Thermo Fisher Scientific is an EEO/Affirmative Action Employer and does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability or any other legally protected status.
First Shift (Days)
Environmental Conditions
Office
Job Description
About the Role
This is an outstanding opportunity to join Thermo Fisher Scientific Inc., a global leader in science and technology, located in Frederick. As a Senior IT Security Engineer specializing in Privileged Access Management (PAM), you will lead ground-breaking initiatives across our vast enterprise. You will play a crucial role in crafting and optimizing our PAM strategies, ensuring the secure management of enterprise secrets.
Key Responsibilities
Strategic PAM Leadership & SME Functions
Own and drive PAM strategy for enterprise-wide privileged access domains and secrets management initiatives
Serve as primary SME for PAM tooling optimization, secrets hardening, and enterprise-scale deployment
Develop and implement annual PAM goals that align with organizational PMD objectives, with a focus on automation and efficiency.
Lead multi-functional PAM initiatives and represent the team in enterprise-wide security projects
Advanced Technical Operations & Automation
Architect and implement complex PAM solutions for enterprise-wide secrets management
Implement metrics and indicators to monitor PAM program efficiency
Craft and maintain enterprise-level privileged access controls and automated secrets management solutions
Drive automation initiatives for recurring PAM tasks and compliance reporting
Lead comprehensive risk assessments for privileged access environments
Communication & Collaborator Management
Simplify complex PAM concepts for non-technical audiences
Develop and present PAM materials and strategic recommendations to leadership
Build and own strong multi-functional relationships across IT and business units
Proactively communicate PAM posture updates to business collaborators
Required Qualifications
Education & Certifications
Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field (equivalent experience accepted)
Advanced PAM certifications required: CyberArk Certified Delivery Engineer, BeyondTrust Certified Professional, or equivalent
Additional security certifications preferred: CISSP, CISM, GSEC, or similar
Experience
6+ years of enterprise security experience with focus on privileged access management
4+ years of hands-on PAM operations experience in large-scale enterprise environments
3+ years of demonstrated leadership in sophisticated PAM implementations
Technical Skills
Expert-level knowledge of PAM principles and privileged access security frameworks
Advanced proficiency in enterprise PAM platforms (Secret Server, CyberArk, BeyondTrust)
Strong experience with directory services and identity management integration
Demonstrated ability to architect tool-agnostic PAM solutions
Experience with cloud PAM and DevOps secrets integration
Leadership & Consulting Skills
Outstanding influence and persuasion abilities with a track record of driving PAM change
Critical thinking and problem-solving skills to identify critical points for PAM transformation
Strong consulting and advisory skills with experience challenging existing practices
Superb communication abilities with capability to present complex PAM concepts to executive audiences
Proven mentorship and training capabilities
Cultural change leadership with experience overcoming organizational resistance
Specialized Proficiencies
Deep understanding of threats to privileged accounts and credential security
Experience with regulatory compliance requirements related to privileged access management
Knowledge of threat modeling and risk assessment methodologies
Familiarity with DevSecOps practices and automated PAM integration in CI/CD pipelines
Understanding of zero trust architecture principles and PAM implementation
What We Offer
Join our elite organization and pioneer PAM transformation across our global enterprise. Drive significant impact in privileged access security while developing innovative solutions for handling massive volumes of enterprise secrets. We provide competitive compensation, comprehensive benefits, leadership development opportunities, and the chance to become the shining light of PAM excellence!
Compensation and Benefits
The salary range estimated for this position based in Maryland is $113,500.00-$170,200.00.
This position may also be eligible to receive a variable annual bonus based on company, team, and/or individual performance results in accordance with company policy. We offer a comprehensive Total Rewards package that our U.S. colleagues and their families can count on, which includes:
A choice of national medical and dental plans, and a national vision plan, including health incentive programs
Employee assistance and family support programs, including commuter benefits and tuition reimbursement
At least 120 hours paid time off (PTO), 10 paid holidays annually, paid parental leave (3 weeks for bonding and 8 weeks for caregiver leave), accident and life insurance, and short- and long-term disability in accordance with company policy
Retirement and savings programs, such as our competitive 401(k) U.S. retirement savings plan
Employees' Stock Purchase Plan (ESPP) offers eligible colleagues the opportunity to purchase company stock at a discount
For more information on our benefits, please visit: https://jobs.thermofisher.com/global/en/total-rewards
Thermo Fisher Scientific is an EEO/Affirmative Action Employer and does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability or any other legally protected status.