University of California, San Francisco · 1 hour ago
Privileged Access Management (PAM) Engineer
United States
Full-time
Remote
Mid Level
$101K/yr - $217K/yr
3+ years expThe University of California, San Francisco (UCSF) is a leading university dedicated to promoting health worldwide through advanced biomedical research, graduate-level education in the life sciences and health professions, and excellence in patient care. The IAM Privileged Access Management (PAM) Engineer will be responsible for developing and maintaining IAM solutions to ensure secure access and compliance with University policies.
AssociationBiotechnologyEducationMedicalPharmaceutical
Responsibilities
The Identity and Access Management (IAM) Privileged Access Management (PAM) Engineer will be responsible for the development, implementation, and maintenance of IAM solutions that align with the University's security policies and requirements
This includes evaluating hosting platforms, configuration technologies, and ensuring consistency between production and non-production environments
This role will partner closely with the IAM Director, IAM Managers, Senior Engineers, Administrators, Analysts, various departments across the University, and external vendors to ensure that access and identity data are granted to users in a secure, compliant, and efficient manner
The IAM PAM Engineer is an important part of the Privileged Access Management (PAM) team and participates in designing, implementing, and maintaining the technical infrastructure that manages privileged accounts and access within UCSF
This role involves ensuring that privileged access is secure, monitored, and compliant with UCSF policies and regulatory requirements
The IAM PAM Engineer works with various PAM tools and technologies to safeguard critical systems and data from unauthorized access and potential security breaches
This team member will advance the University’s mission by delivering exceptional security service comprehensively and consistently across faculty, staff, and students
Qualification
Required
Bachelor's Degree or equivalent combination of experience/training in one or more of the following fields: cybersecurity, information technology, computer science, public administration, business administration, communications
3+ years of experience working in one or more of the following fields: cybersecurity, computer science, computer information systems, etc
Experience with the implementation and integration of Identity and Access Management (IAM) systems and tools
Demonstrated skills applying security controls to computer software and hardware
Hands-on experience with directory services (e.g., Active Directory, Lightweight Directory Access Protocol (LDAP)), Privileged Access Management solutions (e.g., CyberArk, Beyond Trust, Delinea)
Basic understanding of Linux, Windows Server Administration, and Unix servers
Knowledge of data encryption technologies and experience selecting and applying appropriate data encryption technologies
Proficient in scripting and programming languages (e.g., PowerShell, Python, Java) for automation and integration purposes
Experience in incident response and digital forensics including reporting
Strong written and verbal communication skills and ability to communicate technical information and ideas to a diverse community of colleagues and stakeholders
Ability to establish and advance positive working relationships and a strong rapport with team members, stakeholders, and customers
Strong organizational skills and ability to balance competing priorities and support concurrent projects. Experience working in a project-based environment using leading project management practices including schedule management, status reporting, and communication of project risks and issues
Demonstrated problem-solving skills; ability to scope solutions based on knowledge of available resources and timelines. Ability to ask questions, gather information, evaluate options, and make decisions with integrity
Preferred
Experience with the Delinea solutions is highly desired
One or more of the following certifications: CCNP Security, Cisco Certified Internetwork Expert (CCIE) Security, Offensive Security Certified Professional (OSCP), Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or equivalent
Cisco Certified Internetwork Expert (CCIE) Security
Company
University of California, San Francisco
University of California, San Francisco is an educational institution that focuses on medical courses.
10001+ employees
H1B Sponsorship
University of California, San Francisco has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (365)
2024 (342)
2023 (308)
2022 (306)
2021 (241)
2020 (268)
Funding
Current Stage
Late StageTotal Funding
$52.45MKey Investors
California Institute for Regenerative MedicineBaldrick's FoundationNational Institute on Aging
2025-01-30Grant· $11.9M
2023-11-21Grant
2023-10-03Grant
Leadership Team
Pamela Hudson
Chief Operating Officer | Center for Digital Health Innovation
Jimmie Ye
Professor
Recent News
2025-12-25
Genetic Engineering News
2025-12-19
Medical Xpress - latest medical and health news stories
2025-12-17
Company data provided by crunchbase