Key skills
PythonPowerShellAWSAzureGCPIAMAzure ADActive DirectoryAgile
About this role
Humana Inc. is a leading U.S. healthcare company dedicated to improving health outcomes for millions. They are seeking a Senior CyberSecurity Engineer to drive the execution of initiatives supporting the enterprise Privileged Access Management (PAM) program, implementing and operationalizing privileged access capabilities across various environments.
Responsibilities:
- Design, implement, and maintain PAM solutions, including vaulting, credential rotation, session management, and privileged access workflows
- Drive hands-on remediation of high-risk privileged access to ensure principle of least privilege is adhered to and comprehensive controls safeguard existing privileged entitlements
- Implement and enhance privileged access controls across Windows, Linux/AIX, MacOS, Active Directory/Azure AD, cloud platforms, and databases
- Partner with application, infrastructure, and cloud engineering teams to ensure privileged access is correctly inventoried, vaulted, rotated, and governed
- Support onboarding of applications and services into PAM solutions, including privilege mapping, configuration, and testing
- Collaborate with the Associate Director on roadmap execution, technical design decisions, and delivery of program initiatives
- Provide technical input into PAM posture reporting, risk remediation efforts, and audit/compliance responses
- Develop and maintain technical documentation, standards, runbooks, and operational procedures for PAM services
- Participate in incident response, troubleshooting, and root-cause analysis for PAM-related issues
- Support on-call responsibilities and escalation handling for privileged access services as required
- Stay current on emerging PAM technologies, threats, and best practices to continuously improve PAM capabilities
Requirements:
- 3 - 5 years of experience in cybersecurity, IAM, or infrastructure engineering with strong hands-on focus on Privileged Access Management
- Deep technical experience with PAM platforms (e.g., CyberArk, BeyondTrust, Delinea), including vaulting, credential rotation, and session management
- Strong understanding of privileged access models across Windows, Linux/AIX, Active Directory/Azure AD, and cloud environments
- Hands-on experience remediating high-risk privileged access, including service accounts, nested groups, SUDO policies, and elevated admin roles
- Working knowledge of cloud platforms (Azure preferred; AWS/GCP a plus) and cloud privileged access patterns
- Experience automating PAM workflows using scripting or code (PowerShell, Python, APIs)
- Ability to execute complex technical initiatives with minimal oversight while aligning to broader program objectives
- Strong troubleshooting, analytical, and problem-solving skills
- Ability to communicate clearly with technical and non-technical stakeholders
- Experience working in SAFE or similar agile work management methodologies is preferred
- Ability to participate in on-call support and escalation rotations for PAM services
- Bachelor's degree in Computer Science, IT or other related field
- Industry certifications including but not limited to Security+, CISSP, CISM