Description:
We're looking for a Senior Engineer, Privileged Access Management (PAM) to join our team. You will design, build and operate enterprise-scale PAM solutions, lead PAM implementations, develop connectors and automation, and integrate PAM with our wider security and IT estate. You'll work closely with IAM architects, cybersecurity teams, vendors and stakeholders to ensure privileged access is securely managed, auditable and aligned to GSK policies. This role also drives innovation by adopting AI/ML capabilities to enhance anomaly detection, risk scoring and automated workflows across PAM and IAM.
Key Responsibilities
- Design and build enterprise-scale PAM and IAM solutions that meet security, compliance and operational requirements.
- Lead implementation, configuration and engineering of PAM components, including deployment, upgrades and hardening.
- Develop and maintain PAM connectors/plugins and automation for discovery, onboarding, provisioning and de-provisioning.
- Integrate PAM with other security and IT systems (LDAP/AD/EntraID, SIEM, ITSM, identity stores, cloud providers).
- Collaborate with PAM vendors to resolve product issues and support roadmaps.
- Define and enforce access control policies within PAM; support account discovery and onboarding processes.
- Respond to security incidents and conduct investigations involving privileged accounts.
- Provide SME support for audits and regulatory reviews; create evidence and technical explanations as required.
- Report on PAM data and create dashboards/analytics to support operations and compliance.
- Produce and maintain technical documentation, runbooks and training materials for PAM users and administrators.
- Adopt and drive AI efficiency in the PAM and broader IAM area: integrate AI/ML models for anomaly detection, access pattern analysis, risk scoring and AI-driven workflows for provisioning and policy enforcement.
- Work with IAM architects, cybersecurity teams and AI specialists to design and implement innovative solutions; keep current with PAM and AI trends to continuously improve our security posture.
Basic Qualifications We are seeking professionals with the following required skills and qualifications to help us achieve our goals:
- Education: Bachelor's degree in Computer Science, Information Technology or a related field (or equivalent experience).
- Extensive experience in PAM engineering or IAM roles, with hands-on delivery experience.
- Practical experience with CyberArk (Sentry-level expertise).
- Experience developing PAM plugins/connectors and automation.
- Familiarity with AI/ML concepts and tooling (for example Python, TensorFlow, Azure ML, Splunk AI).
- Strong understanding of access control models, threat detection, security frameworks and change management.
- Demonstrates SRE principles with a focus on measuring, maintaining and improving system reliability.
- Strong data analysis skills; able to interpret PAM data for reporting and incident investigations.
- Proven problem-solving and debugging skills with hands-on technical troubleshooting experience.
- Experience with version control and CI/CD: GitHub and Azure DevOps.
- Working knowledge of databases (Azure SQL, IaaS SQL, Oracle, NoSQL) and T-SQL/SQL scripting.
- Proficient in PowerShell scripting.
- Experience integrating PAM with LDAP, EntraID and Active Directory.
- Familiarity with cloud PAM solutions and cloud platforms (Azure, AWS, GCP).
- Good verbal and written communication skills and compliance awareness