PAM Solution Architect

About The Opportunity

New Era Technology is seeking a PAM (Privileged Access Management) Solution Architect Consultant to provide technical support for enterprise IAM security architecture (Identity & Access Management) objectives. Candidate must have a strong background in designing, building and maintaining privileged access management solutions for complex global directory environments. This is a 12-week (3-month) remote project opportunity

Key Responsibilities

Develop a Comprehensive PAM Strategy: Including a vision for the future state, strategic goals, and objectives aligned with the organization’s business and IT strategy

Create a Detailed PAM Reference Architecture: Covering all necessary components, integrations, and technology stack recommendations for the whole enterprise

Establish Robust PAM Standards and Policies: Ensure comprehensive policies for access control, credential management, monitoring, auditing, and compliance, building on PAM Program work-in-progress

Perform a Current State Assessment and Gap Analysis: Including all relevant platforms, environments, and existing PAM implementations including those of Technology Services and SAP

Develop a Multi-Year Implementation Roadmap: Detailed, phased roadmap with key initiatives, milestones, and resource requirements

Provide Baseline Architectural Artifacts: Business, functional, and technical requirements documents, as well as reference architecture diagrams

Define the Technology Stack: Clear definition and recommendations for the PAM technology stack

Create a Framework for Assessing PAM Controls Coverage: Build on emerging framework for assessing PAM controls coverage across platforms (e.g., infrastructure technologies, applications technologies) and environments (e.g., DataCenter, IaaS, PaaS, SaaS, DevOps) as well as maturity of PAM implementation

Required Skills
 

2 – 3 years’ experience architecting PAM Platforms (CyberArk, HashiCorp, BeyondTrust, etc.)

5 – 7 years’ experience engineering PAM Platforms (CyberArk, HashiCorp, BeyondTrust, etc.)

Experience engineering or architecting PAM systems for IAM and/or CIAM platforms

Experience with PAM Platform implementations and integrations

Experience with IAM functions including but not limited to role-based access control, access management, multi-factor authentication and certifications

Hands on experience with IAM Protocols (i.e., OAuth, SAML
Experienced in applying PAM to secure Windows Administrative environments, including Active Directory

Experienced in working in a Windows Tiered Administrative model

Experienced with leading PAM systems such as BeyondTrust Password Safe, OneIdentity Safeguard, CyberArk etc

Experienced in applying Privileged Access Management in Cloud environments (Azure, AWS etc

Experienced in building de-centralized global solutions that are tracked centrally

Experienced with zero-trust for PAM solutions

Experienced with integrating PAM systems for centralized global visibility