PAM Security Architect-- SHUDC

Job Title: PAM Security Architect - W2 only (sponsorship available)

Duration: Long Term

• This is a Top 25 Program from Abby Johnson, highly visible project within the company.
• They need a minimum of 10 years of Architecture experience, and someone who has recent experience working with Secrets Management (Hashi Vault)
• Looking for a true Architect, someone who can look at problem, how they can address the problem, and map it out.
• Someone is an Agent of Change and Patience.
• They'll be dealing with some high-level info within Fidelity, so someone who is open minded, and non-emotional when debating thoughts and opinions is key.

• Architected for PAM solutions (immediate : secrets management deployment using Hashi Vault) that is enterprise scale
• understand
  
  Order and established SME to drive a need to secure legacy needs and be the change agent to adopt modern secrets management capabilities - ephemeral secrets, machine identity, rotate secrets and patterns to drive adoption
• Understand the use cases that depend on PAM / non interactive credentials
• Soft skills - consensus building, speak to your audience,

• Develop a comprehensive PAM architecture strategy that aligns with organizational objectives and regulatory requirements.
• Lead the design and contribute to the development and deployment of PAM solutions, focusing on workload access controls and secrets management.
• Supply to the implementation and management of secrets management solutions, ensuring the secure storage, access, and rotation of privileged credentials.
• Apply frameworks like SPIFFE (Secure Production Identity Framework for Everyone) and SPIRE (SPIFFE Runtime Environment) to establish secure, scalable, and standardized workload identities.
• Leverage PAM tools such as Cyberark, Delinea Secret Server, Hashi Corp Vault pimp, and Microsoft Entra  enhance security measures and streamline access management processes.
• Design PAM policies, standards, and procedures to ensure consistent and secure management of privileged accounts. Ensure PAM practices align with organizational policies and regulatory requirements.
• Assess the effectiveness of PAM controls, making data-driven decisions to reduce risk and enhance security posture.
• Collaborate with technology and business partners to identify and mitigate risks associated with privileged access.
• Stay ahead of emerging trends and technologies in PAM and cybersecurity driving enhancements to existing solutions.

• 10+ years of experience in defining and delivering cybersecurity architecture, strategies and solutions with demonstrated experience in the financial services industry or other highly regulated sectors.
• Bachelor's degree in Information Security, Computer Science, or a related field; a Master's degree is preferred.
• Strong industry experience in architecting and designing PAM solutions and deployment across the enterprise.
• Deep technical understanding of PAM capabilities, controls and security technologies in areas related to identity and access management to address privilege-based risk.
• Familiarity with regulatory requirements related to PAM, such as PCI DSS, HIPAA, or GDPR.
• Expertise with build vs. buy solution options.
• Working knowledge and experience with Cloud Architectures and the ability to address the security considerations of secure cloud computing including IAM with enterprise services, SSDLC, data protection, cryptography and key management.
• Demonstrate leadership and consensus building skills with which you influence decisions and engage across Fidelity and at all levels of the organization
• Exceptional communication and interpersonal skills, with the ability to effectively communicate complex technical concepts to non-technical stakeholders.
• Relevant certifications such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC) are highly desirable.

Mid-Senior level

Full-time

Information Technology