Senior Manager - Privileged Access Management

Job Description

SeniorManager-Security Specialist Privileged Access ManagementIn this role, you will be responsible for supporting Identity and Access Management services which includes supporting the build and sustenance of PAM solution while adhering to Genpact standards and best practices. The ability to take up challenges, adapt to the business needs, and staying focused on delivering results is essential to the success of this role.Responsibilities

• Build, design and implement PAM solutions across different complex environments (on-prem & cloud).
• Provide support to the entire PAM /PIM environment.
• Responsible for creating, maintaining, and monitoring the policies on PAM solutions
• Ability to document and define PAM target state processes and gather business requirements
• Work closely with business and IT stakeholders to develop and perform stronger governance of PAM & IAM processes, engage in risk-based security assessments, and assist in remediation efforts.
• Support security-related assessments and configurations for PAM platforms and provide a recommendation of the best practices for implementation.
• Develop and report risk metrics (KPIs/KRIs) as well periodic scorecards consumed by management for the PAM program.
• Keep pace with emerging IAM and PAM technology, cyber threats, and industry trends around cybersecurity.
• Play an active role in the execution of the project and demonstrate strong technical leadership
• Develop enterprise-wide standards for identity and access management, Privileged Account management to meet business requirements.
• Establishes and refines procedures and other business processes to detect errors and inconsistencies in privileges.
• Support detailed reporting and root cause analysis with various internal technology teams.
• Build relationships and serve as a liaison between system/application owners and the internal technology team for governance and security-specific initiatives.

Qualifications we seek in youMinimum qualifications

• Bachelors or higher in Computer Science or equivalent degree.
• Relevant experience with Design, Build, and operations of PAM solutions and experience integrating PAM solutions with infrastructure and applications.
• Strong Windows Active Directory, UNIX, Linux & SSH key management experience
• Strong understanding of network hardware configuration and password management options (SSH, ACS, LDAP)
• Strong understanding of Database authentication methods and techniques (standalone, LDAP/AD, others)
• Good understanding of Privileged Management processes; Defining Access Control, User Entitlements, Manage Applications Credentials, and User Access Policy Management
• Experience on one or more of the following:
  • BeyondTrust, CyberArk, ObserveIT, Arcos or any other leading PAM technologies.
• Understanding of Role Base Access Control and/or Attribute and Policy-based Access Control (ABAC + PBAC)
• Experience with the concepts of user directories, password vaulting, privileged session management
• Experience and working knowledge of IAM/PAM Standards and common best practices including Authentication, Authorization, role-based access controls and PAM Governance and Administration.
• Strong knowledge of SAML, Header-Based authentication, SCIM, FIDO, OAuth, Open ID connect and REST concepts
• Strong understanding of the information security domains.
• Experience with different services, technologies within cloud environments like AWS, Azure, GCP
• Ability to perform a risk assessment and security threat modeling exercises with technology engineering teams.
• Excellent in Coordination with cross-functional teams and vendors for evaluation/rollout of new technologies
• Excellent verbal and written communications

Preferred qualifications

• Proven experience in Information Security domains (IAM/PAM)
• Proven track record of operating with a high degree of confidentiality and responsibility.
• Security Qualifications Preferred: CISSP, CCSK/CCSP, CISM etc.

,

Keyskills :
financesalesltdmisaccountancyroot cause analysiswindows active directoryroot causerisk metricsaccess controlcustomer focuskey management