GuidePoint Security · 1 month ago
PAM Engineer (Remote in the US)
United States
Full-time
Remote
Mid, Senior Level
3+ years expGuidePoint Security is hiring a PAM Engineer to join their implementation team on a full-time basis. The role focuses on designing, deploying, administering, and optimizing enterprise-grade PAM solutions to ensure secure management of privileged accounts and access workflows across the organization.
Cyber SecurityInformation TechnologySecurity
Responsibilities
Deploy, configure, manage, and support Delinea Secret Server (On-Prem/Cloud) and CyberArk Privileged-Cloud environments
Manage vaulting, onboarding, and lifecycle governance for privileged, shared, and service accounts
Maintain password rotation policies, session management, access workflows, and security controls
Implement and oversee privileged session monitoring, session recording, and behavioral alerts
Ensure adherence to least-privilege and Zero-Trust principles for all privileged identities
Support modern PAM capabilities such as: Just-in-Time (JIT) privilege elevation; Ephemeral and dynamic credentials; Secrets management APIs / integrations; Cloud-native privileged access management; Credential discovery, scanning, and risk classification; Hybrid identity governance for machine accounts
Assist in building automated credential workflows for CI/CD pipelines and DevOps systems
Integrate PAM platforms with AD/LDAP, Azure AD, SSO/IDP, SIEM, MFA, ticketing systems, and cloud services (AWS/Azure/GCP)
Onboard new systems, servers, applications, databases, and network devices to Delinea and CyberArk
Configure connectors, distributed engines, secrets management API endpoints, and credential plugins
Develop automation for onboarding, rotation, and monitoring using PowerShell, Python, or REST APIs
Qualification
Required
Bachelor's degree in Computer Science, Information Security, or related field — or equivalent work experience
3–5+ years of experience in Privileged Access Management engineering or Consulting
Hands-on experience with Delinea Secret Server (on-prem or cloud) including password rotation, connectors, RBAC, and auditing
Experience in implementing CyberArk Privileged Cloud (or CyberArk CorePAS)
Strong understanding of privileged account governance, password rotation, service account automation, and session management
Experience with Windows/Linux server administration and Active Directory
Familiarity with scripting (PowerShell, Python) and REST APIs
Knowledge of common security frameworks and access control principles
Preferred
3-5 years of IT Professional services and consulting experience
Professional certifications such as: Delinea Certified Engineer; CyberArk Defender / CyberArk Sentry / Guardian; CISSP, CISM, Security+, CCSP, or similar
Exposure to modern PAM capabilities: Ephemeral access; Credential-less access; Cloud secrets management; Certificate lifecycle management
Experience integrating PAM with DevOps pipelines (Jenkins, GitHub, Azure DevOps, GitLab)
Background in cloud security for AWS, Azure, and/or GCP
Experience in NHIM/Machine Identity Governance tools
Ability to design PAM architectures and drive enterprise-wide PAM programs
Company
GuidePoint Security
GuidePoint Security provides customized, innovative & valuable Information Security solutions that enable commercial federal organizations.
1001-5000 employees
H1B Sponsorship
GuidePoint Security has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (11)
2024 (14)
2023 (2)
2022 (1)
Funding
Current Stage
Late StageTotal Funding
unknownKey Investors
Audax Private Equity
2023-10-10Private Equity
Leadership Team
Michael Volk
Chairman & CEO
J
Joe Leonard
CTO & VP Security Strategy
Recent News
2026-01-22
2026-01-16
Company data provided by crunchbase