דרושים Privileged Access Management Pam Analyst ב-3m ב-ארהב

Job Description:

Intermediate SOC Analyst (L2)

Key Responsibilities:

• Monitor and analyze security alerts from SIEM, EDR, and other security platforms to identify potential threats.
• Perform in-depth investigation of suspicious activity, correlating data across multiple sources to determine scope and impact.
• Lead the resolution of low to moderately complex security incidents, including containment, eradication, and recovery actions.
• Escalate confirmed incidents to L3 analysts or incident response teams with detailed documentation and recommendations.
• Support containment and remediation efforts during active incidents.
• Conduct initial root cause analysis and contribute to post-incident reviews to identify gaps and improve future response efforts.

• Leverage threat intelligence, behavioral analytics, and contextual data to enhance detection, investigation, and resolution capabilities.
• Collaborate with detection engineering teams to develop, test, and tune detection rules and use cases.
• Perform basic malware analysis, log correlation, and network traffic inspection to support incident resolution.
• Maintain up-to-date knowledge of the threat landscape, including attacker tactics, techniques, and procedures (TTPs), and apply this knowledge to improve incident handling.

• Work closely with IT, OT, and business units to validate alerts, gather context, and coordinate incident resolution efforts.
• Document investigation steps, findings, and resolution actions in a clear, structured, and timely manner.
• Participate in SOC shift rotations to ensure 24/7 monitoring and rapid response to security events.
• Contribute to the continuous improvement of SOC processes, playbooks, and knowledge base, with a focus on enhancing incident resolution workflows

Your Skills and Expertise

To set you up for success in this role from day one, 3M requires
(at a minimum) the following qualifications:

• Bachelor’s degree in Cybersecurity, Information Technology, or Computer Science (completed and verified prior to start)
• Two (2) years of experience in a SOC or cybersecurity operations role in a private, public, government or military environment

Additional qualifications that could help you succeed even further in this role include:

• Effective communicator with the ability to document investigations and collaborate with cross-functional teams
• Certifications such as CompTIA Security+, CySA+, or GCIH

• Proficiency in analyzing alerts from SIEM, EDR, and network monitoring tools
• Familiarity with threat intelligence, basic malware analysis, and log correlation techniques
• Understanding of common attack vectors, threat actor behaviors, and frameworks like MITRE ATT&CK
• Strong analytical and problem-solving skills with attention to detail
• Experienced in triaging and investigating security alerts across SIEM, EDR, and network platforms
• Skilled in correlating data from multiple sources to identify and escalate confirmed threats
• Proficient in supporting incident response efforts and conducting initial root cause analysis
• Strong understanding of threat intelligence and its application in operational workflows
• Effective communicator with the ability to document investigations clearly and collaborate across teams
• Committed to continuous learning and development in threat detection and response
• Analytical thinker with a proactive approach to identifying and mitigating risks
• Reliable team player in a 24/7 SOC environment, contributing to operational excellence

Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly.

Please access the linked document by clicking select the country where you are applying for employment, and review. Before submitting your application, you will be asked to confirm your agreement with the terms.

Job Description:

Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly.

Please access the linked document by clicking select the country where you are applying for employment, and review. Before submitting your application, you will be asked to confirm your agreement with the terms.

The Impact You’ll Make in this Role
As an Industrial Engineer at 3M distribution center, you will be integral to optimizing our distribution and logistics operations. Your role will involve analyzing existing processes, identifying areas for improvement, implementing solutions that enhance efficiency and cost effectiveness. You will work closely with teams across various departments to develop and refine labor management programs, build engineered standards, streamline workflows, and support the deployment of automation technologies.

You will also be responsible for data analysis and process modeling to ensure that our operations are aligned with industry best practices and our company strategic goals. This position requires a strong foundation in industrial engineering principles, problem solving skills, and ability to manage multiple projects simultaneously.

As a(n) Industrial Engineer in 3M Distribution, you will have the opportunity to tap into your curiosity and collaborate with some of the most innovative people around the world. Here, you will make an impact by:

• Support Automation Projects : Assist in the design and implementation of automation systems within distribution centers, contributing to efforts that enhance efficiency and productivity.
• Labor Management Analysis : Participate in the development and maintenance of labor management programs, including data collection, analysis, and reporting to support workforce optimization.
• Process Improvement Support : Collaborate with senior engineers to identify process inefficiencies and support the execution of continuous improvement projects aimed at cost reduction and operational excellence.
• Data Collection and Reporting : Gather, analyze, and report on key performance metrics related to distribution center operations, providing actionable insights to drive decision-making and process improvements.

Your Skills and Expertise

To set you up for success in this role from day one, 3M requires (at a minimum) the following qualifications:

• Bachelor’s degree or higher (completed and verified prior to start) in industrial/manufacturing engineering, operations research or statistics
• Three (3) years of experience in a labor management program engineering labor standards within a distribution or fulfillment center in a private, public, government or military environment
• Three (3) years of experience in AutoCAD or similar CAD tool
• Three (3) years of experience in Lean Six Sigma methodology
• Three (3) years of experience in SQL

Additional qualifications that could help you succeed even further in this role include:

• Distribution Automation technologies experience
• Proficiency in SQL, analytics, simulation, and project management tools
• Problem-Solving Skills : Demonstrated ability to analyze complex systems and processes, identify inefficiencies, and develop innovative engineering solutions to drive improvements
• Communication and Leadership : Excellent communication skills, with the ability to effectively present ideas and influence decision-making. Strong leadership and teamwork abilities, with a proven track record of successfully managing cross-functional projects

Work location:

• Location: Dekalb, IL

Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly.

Please access the linked document by clicking select the country where you are applying for employment, and review. Before submitting your application, you will be asked to confirm your agreement with the terms.

The Impact You’ll Make in this Role

As the Authentication Services Leader within our Cybersecurity Identity & Access Management (IAM) team, you will be responsible for shaping and executing the strategic vision for authentication services across the enterprise. You will lead a team of IAM professionals, drive innovation in authentication technologies, and ensure secure, scalable, and compliant access to systems and applications. In this role, you will:

• Lead and develop a high-performing IAM team , fostering a culture of innovation, accountability, and continuous improvement.
• Define and execute the strategic roadmap for authentication services, including Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Active Directory architecture.
• Serve as a technical authority on authentication technologies, with deep expertise in Microsoft’s Identity stack, including:
  • Microsoft Entra ID (formerly Azure AD) : tenant configuration, hybrid identity, conditional access, identity protection, and seamless SSO.
  • Active Directory (AD) : expert-level design, architecture, optimization, group policy management, replication, and domain controller operations.
  • Microsoft Entra ID Governance : access reviews, entitlement management, lifecycle workflows, and privileged identity management (PIM).
  • Microsoft Entra External ID : B2B and B2C federation and external user collaboration.
• Provide expert-level guidance on directory services , including Active Directory, LDAP, and ADFS, ensuring secure and efficient identity resolution and authentication.
• Drive adoption of modern federation and authentication protocols , including SAML, OAuth, and OIDC, across internal and external platforms.
• Collaborate with senior leadership and cross-functional teams to integrate IAM strategies with enterprise architecture, cloud transformation, and Zero Trust initiatives.
• Ensure compliance with regulatory frameworks (SOX, HIPAA, PCI-DSS, ISO 27001) through effective access controls and audit practices.
• Evaluate emerging technologies and trends , recommending enhancements to authentication infrastructure and user experience.
• Mentor and coach team members , promoting technical excellence and career growth.
• Manage vendor relationships and contracts related to IAM platforms and services.

Your Skills and Expertise

To set you up for success in this role from day one, 3M requires (at a minimum) the following qualifications:

• High School Diploma (verified and completed prior to start) and 8 years of experience in Information Technology, Computer Science, IAM Engineering, or Information Security in a private, public, government, or military environment.

• Bachelor's degree or higher (verified and completed prior to start) and Six (6) years of experience in Information Technology, Computer Science, IAM Engineering, or Information Security, in a private, public, government, or military environment.

AND

• Three (3) years of experience in a leadership or managerial role

Additional qualifications that could help you succeed even further in this role include:

• Expert-level experience in Active Directory design, architecture, and optimization
• Deep expertise in Microsoft Identity technologies including Entra ID, Active Directory, LDAP, and ADFS
• Strong understanding of federation protocols such as SAML, OAuth, and OIDC
• Relevant certifications (e.g., CISSP, CISM, Microsoft Certified: Identity and Access Administrator Associate)
• Strong understanding of cloud identity management (AWS, Azure, GCP)
• Experience implementing Zero Trust architectures
• Proficiency in scripting and automation (PowerShell, Python, SQL)
• Familiarity with CIAM, PKI, and certificate management
• Strong communication, stakeholder engagement, and project management skills
• Ability to translate complex technical concepts into strategic business outcomes

Work Location

• On-site in Maplewood, MN, or Austin, TX office at least 4 days per week
• Travel : May include up to 15%

Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly.

Please access the linked document by clicking select the country where you are applying for employment, and review. Before submitting your application, you will be asked to confirm your agreement with the terms.

Privileged Access Management (PAM) Engineer

The Impact You’ll Make in this Role

As a Privileged Access Management (PAM) Engineer, you will focus on secrets management, non-human identity (NHI) management, and advanced integration capabilities within our privileged access management ecosystem as we implement innovative capacities for the enterprise. Here, you will make an impact by:

• Design and implement enterprise secrets management solutions using CyberArk Conjur and AAM
• Manage privileged access for service accounts, API keys, and certificates
• Build custom applications and tools for PAM automation
• Develop APIs and microservices for secrets management
• Integrate secrets management into CI/CD pipelines and DevSecOps workflows
• Implement automated credential rotation for applications and services
• Support containerized and cloud-native application security
• Create SDK integrations and Infrastructure as Code (IaC) for PAM resources

Your Skills and Expertise

To set you up for success in this role from day one, 3M requires (at a minimum) the following qualifications:

• High School Diploma (verified and completed prior to start) and 8 years of experience in Information Technology, Computer Science, Software Development, or DevOps in a private, public, government, or military environment.

• Bachelor's degree or higher (verified and completed prior to start) AND Six (6) years of experience in Information Technology, Computer Science, Software Development, or DevOps, in a private, public, government, or military environment.

Additional qualifications that could help you succeed even further in this role include:

• Programming proficiency (Java, C#, Python, Go, or similar)
• Experience with CyberArk Conjur, AAM, or similar secrets management tools Understanding of containerization (Docker, Kubernetes)
• CyberArk Conjur certification
• Cloud platform certifications (AWS, Azure, GCP)
• Experience with HashiCorp Vault or similar tools
• DevSecOps or secure development certifications
• Kubernetes security certifications (CKS)
• Software development and API integration
• Secrets management and credential lifecycle automation
• Cloud-native security patterns and container orchestration
• DevSecOps practices and secure coding
• Machine-to-machine authentication frameworks

Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly.

Please access the linked document by clicking select the country where you are applying for employment, and review. Before submitting your application, you will be asked to confirm your agreement with the terms.

Job Description:

Attack Surface Management Lead

The Impact You Will Make in this Role:

The Attack Surface Management (ASM) Lead will drive the identification, analysis, and reduction of the organization's digital and physical exposure across cloud, on-prem, OT, and third-party environments. This role will lead the enterprise-wide ASM strategy, combining external threat visibility with internal exposure reduction, and will oversee related functions such as vulnerability management, asset discovery, and exposure monitoring. ​

Key Responsibilities:

​

• Define and execute the enterprise Attack Surface Management strategy across cloud, on-premises, and external environments. ​

• Lead and mentor a cross-functional ASM team, including direct oversight of the Vulnerability Management (VM) and Threat Intel & Testing Manager

• Establish clear goals, success metrics, and maturity roadmaps for ASM including VM and Threat Intel & Testing functions. ​

• Collaborate with IT, cloud, OT, and third-party risk teams to align ASM initiatives with organizational risk priorities. ​

• Manage vendor relationships and toolsets supporting ASM, external scanning, and attack surface discovery platforms.​

• Lead efforts to map, monitor, and validate known and unknown assets, services, and digital exposures. ​

• Implement continuous discovery and monitoring of exposed assets and services, including shadow IT, abandoned infrastructure, expired domains, and misconfigured cloud resources. ​

• Develop and maintain asset classification and tagging strategies to support risk-based prioritization and contextual analysis. ​

• Correlate ASM findings with threat intelligence feeds and vulnerability data to identify high-risk exposures and inform remediation efforts. ​

• Define and implement processes for validation, triage, and escalation of ASM findings in coordination with vulnerability management and SOC teams. ​

• Oversee integration of ASM platforms with SIEM/SOAR solutions (e.g., Sentinel, Splunk, ServiceNow) to automate alerting, ticketing, and response workflows. ​

• Collaborate with security engineering and architecture teams to implement preventive controls, such as automated remediation, segmentation, or blocking of exposed services. ​

• Analyze trends and patterns in exposure data to identify systemic issues, control gaps, and architectural weaknesses.​

• Translate ASM insights into business risk terms and influence remediation priorities with stakeholders. ​

• Report attack surface trends, exposure metrics, and risk posture to senior leadership and governance forums. ​

• Collaborate with Security Architecture and GRC to integrate ASM outputs into risk registers and architectural reviews. ​

• Ensure ASM-related processes and reporting support regulatory, compliance, and audit requirements.

Your Skills and Expertise:

To set you up for success in this role from day one, 3M requires (at a minimum) the following qualifications:

• Bachelor's degree in cybersecurity or computer science (completed and verified prior to start) from an accredited university.

• Seven (7) years of experience in cybersecurity, with at least 2 years focused on ASM, external threat management, or exposure reduction in a private, public, government or military environment ​

Additional qualifications that could help you succeed even further in this role include:

• Relevant certifications (e.g., CISSP, OSCP, GIAC, CRTO) preferred.​

• Proven leadership experience managing security functions and personnel, ideally including vulnerability management. ​

• Strong understanding of enterprise architectures, networking, cloud environments (Azure, AWS, GCP), and OT/IoT systems. ​

• Experience with ASM tools (e.g., Randori, Censys, Shodan, Palo Alto Xpanse) and vulnerability platforms (e.g., Wiz, Qualys, Microsoft Defender TVM). ​

• Familiarity with threat modeling frameworks, MITRE ATT&CK, and risk-based prioritization methodologies. ​

• Strong verbal and written communication skills, including experience presenting to executives and technical stakeholders. ​

• Strong leadership and people management skills with cross-functional influence. ​

• Deep understanding of ASM concepts, tools, and exposure management lifecycle. ​

• Experience managing or integrating vulnerability management functions. ​

• Expertise in asset discovery, external reconnaissance, and attack path mapping. ​

• Ability to translate technical risks into business impacts. ​

• Familiarity with hybrid infrastructure (cloud, on-prem, OT, third-party). ​

• Knowledge of security architecture principles and IT/OT convergence challenges. ​

• Skilled in vendor evaluation, tool selection, and capability building. ​

• Competence in data analysis and reporting using dashboards or BI tools. ​

• Excellent documentation and communication skills, with a focus on executive reporting and technical clarity.​

Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly.

Please access the linked document by clicking select the country where you are applying for employment, and review. Before submitting your application, you will be asked to confirm your agreement with the terms.

The Impact You’ll Make in this Role

As a PAM Solutions Architect & Lead Engineer, you will you will support our privileged access management strategy and lead advanced technical implementations, serving as primary technical architect and hands-on implementation leader for complex PAM initiatives as we implement innovative capabilities for the enterprise. Here, you will make an impact by:

• Architect enterprise-scale PAM solutions across hybrid and cloud environments
• Lead large-scale, mission-critical PAM implementations and cloud transformations
• Support PAM Manager in developing program strategy, governance frameworks, and KPIs
• Design complex integrations and custom solutions for unique use cases
• Provide technical mentorship and leadership to PAM team members
• Lead incident response for critical PAM-related security events
• Serve as senior technical liaison with CyberArk and other vendors
• Create enterprise standards, reference architectures, and design patterns
• Drive automation and orchestration initiatives across the PAM stack

Your Skills and Expertise
To set you up for success in this role from day one, 3M requires (at a minimum) the following qualifications:

• Bachelor's degree or higher (completed and verified prior to start)
• Seven (7) years of privileged access management with hands-on technical implementation in a private, public, government, or military environment.

Additional qualifications that could help you succeed even further in this role include:

• Master's degree in Computer Science or Information Technology (completed and verified prior to start)
• Expert-level experience with CyberArk PAS suite architecture and implementation
• Proven ability to architect and implement complex, enterprise-scale PAM solutions
• Deep technical knowledge of all CyberArk components (Vault, CPM, PSM, PVWA, AAM, Conjur)
• CyberArk CDE (Certified Delivery Engineer) - Current or previously certified
• Multiple CyberArk certifications (Guardian, Sentry)

Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly.

Please access the linked document by clicking select the country where you are applying for employment, and review. Before submitting your application, you will be asked to confirm your agreement with the terms.