Experian is a global data and technology company, powering opportunities for people and businesses around the world. The PAM Lead Engineer will serve as the technical authority and Subject Matter Expert for Privileged Access Management, leading the design and implementation of enterprise PAM capabilities while ensuring security and compliance across multi-cloud environments.
Responsibilities:
- Serve as the enterprise-wide technical SME and technical product owner for Privileged Access Management, with primary ownership of the CyberArk Privileged Cloud Platform
- Define, maintain, and evolve the PAM technical strategy, architecture, and roadmap, ensuring alignment with Zero Trust principles, compliance obligations, and a cloud-first security strategy
- Lead the deployment, integration, and optimization of CyberArk Secure Infrastructure Access (SIA) and CyberArk Cloud Security Access (CSA) across hybrid and multi-cloud environments
- Architect PAM solutions for AWS, Azure, and GCP, securing IaaS, PaaS, and SaaS workloads, as well as DevOps platforms and CI/CD pipelines
- Implementation of technical capabilities utilizing CyberArk products to secure and manage secrets on hybrid and multi-cloud environments
- Drive automation-first PAM deployments using tools such as Terraform, Ansible, PowerShell, Python, and CI/CD pipelines
- Act as the technical escalation SME and provide mentorship to operations and engineering teams on complex design, implementation, and troubleshooting challenges
- Evaluate, prototype, and implement emerging PAM and cloud-native security technologies
- Stay current with the CyberArk product roadmap, industry best practices, and the evolving threat landscape
- Drive adoption of new PAM capabilities that enhance security posture, operational efficiency, and user experience
Requirements:
- 10+ years of experience in cybersecurity, IAM, or infrastructure security
- 7+ years focused on Privileged Access Management
- Proven hands-on experience as a CyberArk SME, delivering large-scale, enterprise PAM implementations
- Demonstrated success implementing the CyberArk Privileged Cloud Platform in complex multi-cloud environments (AWS, Azure, GCP)
- Experience acting as a technical lead, security architect, or technical product owner
- Deep expertise in implementing and supporting CyberArk solutions, including: CyberArk PAM Self-Hosted (PAS), CyberArk Privileged Cloud, CyberArk Endpoint Privilege Manager (EPM), CyberArk Conjur Enterprise and/or Secrets Hub
- Strong understanding of cloud security architecture, identity and access control models, Zero Trust, and least privilege design principles
- Advanced experience with automation, Infrastructure as Code (IaC), and scripting