Privileged Access Management (PAM) Specialist
Indexed description
Why Join AspenView?
At AspenView, we’re more than a nearshore IT partner—we’re a people-first, purpose-driven company that believes great culture drives great outcomes. We’re passionate about connecting talent and technology to deliver measurable value for clients—and meaningful career paths for our people.
Here’s What You Can Expect
- Competitive base
- Flexible work model: hybrid, remote, or in-office
- Real growth opportunities and leadership visibility
- Inclusive, respectful culture that blends U.S. innovation with Colombian heart
- A company that listens, invests in you, and celebrates wins together
Working across a complex hybrid estate, you will establish foundational privileged access controls and scale them to protect up to 500 privileged users.
The shift hours for this role are allocated in European timezone.
What You Will Do
Privileged Account Discovery
- Perform privileged account discovery across a hybrid estate, including Active Directory, Windows and Linux servers, and databases.
- Catalog and classify privileged, shared, and external privileged accounts to establish a complete access baseline.
- Design and implement secure credential vaulting with automated password rotation.
- Define policies and controls for the full lifecycle management of privileged credentials.
- Design and implement just-in-time (JIT) privilege elevation workflows to eliminate standing privileged access.
- Deploy privileged session proxy and session recording capabilities to support monitoring, audit, and forensic review.
- Integrate PAM controls with IGA certification and access-review workflows so that privileged access remains governed and compliant.
- Partner with identity governance stakeholders to align PAM with the wider IGA operating model.
- Build initially for up to 250 privileged users, scaling to 500, spanning AD and Entra ID administrators, Windows/Linux servers, databases, network and security devices, SAP administrators, ServiceNow administrators, shared privileged accounts, and external privileged users.
- Bachelor’s degree in Computer Science, Information Security, Information Technology, or a related field, or equivalent practical experience.
- Demonstrated experience performing privileged account discovery across hybrid environments (Active Directory, Windows/Linux servers, and databases).
- Hands-on experience implementing credential vaulting and automated credential rotation.
- Experience designing and implementing JIT privilege elevation.
- Experience deploying session proxy and session recording solutions.
- Experience integrating PAM controls with IGA certification workflows.
- Deep expertise in a leading PAM platform — CyberArk or BeyondTrust. Experience with the PAM module within Saviynt is valuable where an integrated IGA/PAM model is adopted.
- Strong understanding of privileged access across hybrid estates spanning identity, servers, databases, and network/security devices.
- SAP privileged access (Basis / admin accounts).
- Break-glass / firefighter workflow design.
- Non-human identity (NHI) credential governance.
- Microsoft Entra ID Privileged Identity Management (PIM) integration.
- Current CyberArk Defender / Sentry OR BeyondTrust certified professional certification is required.
- Saviynt PAM experience is relevant where an integrated IGA/PAM model is selected.
Equal Opportunity Employer
AspenView is proud to be an equal opportunity employer. We believe in creating an environment where all employees feel welcome, valued, and empowered to succeed. We celebrate diversity and strive to build a culture of inclusion where all individuals, regardless of their race, color, gender, gender identity or expression, sexual orientation, disability, age, or any other characteristic, can thrive. We encourage applicants from all walks of life to join our team and make a lasting impact.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search