Expoint - all jobs in one place

Finding the best job has never been easier

Limitless High-tech career opportunities - Expoint

EY Government Public Sector - Cybersecurity Privileged Access Manager 
United States, Virginia, Arlington 
528494707

02.12.2024

Our Cyber Privileged Access Management (PAS) Manager will provide technical and programmatic services to internal and external customers. They should understand the principles and best practices of Privileged Access Management and understanding of the importance of securing privileged accounts and access. The Manager will manage the lifecycle of privileged access, including provisioning, rotation, monitoring, and decommissioning of privileged accounts. This will require collaboration with IT, cybersecurity, and other departments to integrate PAM solutions with existing systems and workflows. They will be responsible for leading incident response activities related to privileged account breaches or misuse. Additionally, they will be responsible for:

  • Providing expert guidance and training to staff on best practices for privileged access management and security awareness.
  • Applying solutions for managing privileged access within cloud service provider tools (AWS IAM, Azure Directory)
  • Addressing platform specific implementation requirements for Windows Server (Server 2012, Server 2022) and Linux operating systems (Redhat Enterprise Linux, Amazon Linux)
  • Security Architecture
  • Implementing and supporting NIST best practices for the Least Privilege Model for the enterprise
  • Implementing advanced capabilities including Just-In-Time Provisioning for Privileged Access, Zero Trust principles, Privileged Account Session Management, Privilege Elevation and Delegation Management, and Lifecycle Management
  • Working with other security engineers to develop and implement security policies and procedures as applied to cloud service provider hosted systems
  • Supporting the development and enhancement of enterprise secrets management uses cases and features, including backend vault platforms
  • Implementing Role Based Access Controls (RBACs) and manage ongoing infrastructure changes, ensuring implementation of least privilege and separation of duties best practices within cloud and on prem environments.
  • Providing identity cloud expertise to inform strategic cloud policy and updated cloud governance and architecture to be aligned with PAM initiatives. Experience with Microsoft Azure is preferred but AWS experience is also considered valuable
  • Scripting and automation; scripting languages like PowerShell, Python, or others for automating tasks and processes related to privileged access management tools
  • Manage and govern privileged accounts on multiple systems and applications. Identify owners, who is using it (humans or systems), develop risk-based classification models, and partner with other teams to timely redress and remediate unsafe practices or accounts
  • Experience with common tools for automation in owned-premise and cloud service provider operating environments (Jenkins/Cloudbees/Harness i.o, Github actions, AWS Lambda) beneficial
  • Excellent problem-solving skills and the ability to work in a fast-paced, evolving environment.
  • Strong troubleshooting skills to identify and resolve issues related to privileged access management tool implementations
  • Supporting Continuous Diagnostics and Mitigation (CDM), work with other security, engineering, and operations teams to develop necessary safeguarding, logging, alert generation, etc. to detect relevant anomalies.
  • Monitoring, recording, auditing, and analyzing privileged access, sessions, actions, across multi-cloud, hybrid-cloud, and on-prem systems
  • Managing definition, planning, and delivery of work product through Agile SCRUM, Kanban.

To qualify for the role, you must have

  • Bachelor’s Degree
  • 5-8+ years of relevant experience
  • Strong communication and leadership skills, with the ability to collaborate effectively across all levels of the organization
  • Effective communication skills to articulate technical concepts to both technical and non-technical stakeholders
  • Deep technical knowledge of PAM tools and technologies (e.g., CyberArk)
  • High level of proficiency in Microsoft Office applications (Word, Excel, Project and PowerPoint)
  • Ability to coordinate SMEs across multiple knowledge domains to offer solutions to USCIS mission needs

Ideally, you'll also have

  • Consulting experience or experience working on technical projects
  • MS in STEM degree

What we offer


We offer a competitive compensation package where you’ll be rewarded based on your performance and recognized for the value you bring to our business. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. Under our flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances. You’ll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.

• Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

What we offer
We offer a comprehensive compensation and benefits package where you’ll be rewarded based on your performance and recognized for the value you bring to the business. The base salary range for this job in all geographic locations in the US is $143,500 to $263,200. The salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is $172,200 to $299,100. Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. Join us in our team-led and leader-enabled hybrid model. Our expectation is for most people in external, client serving roles to work together in person 40-60% of the time over the course of an engagement, project or year. Under our flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances. You’ll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
  • Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
  • Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
  • Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
  • Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.