The PAM Subject Matter Expert (SME) is a technical leadership role focused on the delivery and deployment of a new Privileged Access Management (PAM) solution. This position requires a high level of technical caliber to engage effectively with infrastructure and IAM teams, collaborate with vendors, and define complex requirements and workflows. The SME will play a critical role in capturing the current inventory and identifying prevalent use cases across the organization to ensure a seamless implementation.
Required Experience and Skills
PAM Implementation Expertise: Proven track record as a Technical Analyst or SME on Privileged Access Management projects, specifically involving the implementation of enterprise tools such as CyberArk, BeyondTrust, Delinea, or Thycotic.
Technical Design & Requirements: Deep subject matter knowledge of common PAM use cases, including credential management, session management, and session spawning. Experience must include a primary role in deriving technical requirements and developing robust technical designs.
Infrastructure & Cloud Proficiency: Strong understanding of Access Management contexts for common infrastructure patterns, including *Nix, Windows, Remote Desktop Access, AWS IAM, and Azure Cloud IAM processes.
Advanced Access Modeling: Experience building access models for IaaS and PaaS platforms, implementing Just-in-Time (JIT) Access, and managing Access Governance for AWS, GCP, and Microsoft Cloud-based services and applications.
Communication & Collaboration: Demonstrated ability as an effective communicator and active listener. A collaborative team player capable of engaging with diverse stakeholders with patience and clarity.
Cyber Security Fundamentals: A strong grounding in core Cyber Security concepts, including resilience, data governance, and network security.
Qualifications & Desirables
Certifications: Professional certifications such as CISSP or CISM are highly preferred.
Architecture Frameworks: Familiarity with Enterprise Architecture frameworks (e.g., TOGAF, Zachman, DoDAF) is desired but not essential.
Specialized Deployment: Previous experience as an SME on Saviynt CPAM deployment projects is a significant advantage.
PAM Implementation, CyberArk, BeyondTrust, Delinea, Thycotic, Credential Management, Session Management, Session Spawning, Technical Design, Requirements Gathering, Infrastructure Security, Linux, Windows Server, Remote Desktop Services, AWS IAM, Azure IAM, GCP IAM, Access Modeling, IaaS, PaaS, Just-In-Time Access, Access Governance, Cloud Security, Cyber Security, Data Governance, Network Security, Stakeholder Communication, Collaboration, Saviynt CPAM, Enterprise Architecture Frameworks, TOGAF, Zachman, DoDAF, CISSP, CISM