Cyber SDC - Privileged Access Management - Senior

Cyber SDC - Privileged Access Management - Senior - Location OPEN

Join EY as a Senior Consultant in our Identity and Access Management team, focusing on privileged access management solutions across multiple platforms.

You'll design, engineer, maintain, and troubleshoot privilege and secret management solutions, working with tools such as Cyber Ark, Beyond Trust, Hashi Corp, and Delinea. You'll collaborate with clients to align security strategies with business goals and to implement innovative IAM services.

• Support the development of privilege and secret access management controls (Cyber Ark, Beyond Trust, Hashi Corp, Delinea).
• Assist in the design and implementation of privileged access and secret management solutions.
• Participate in requirement gathering and definition of use cases at the enterprise level.
• Configure and optimize discovery tools for privilege accounts, services, SSH keys, and tasks (Cyber Ark, Hashi Corp, Delinea, Beyond Trust).
• Support onboarding of target systems such as Windows, Linux, Unix accounts, databases (Oracle, MS SQL, Redis), and integration with Dev Ops solutions (Ansible, Puppet, Jenkins, Kubernetes, Open Shift, Git Hub, Git Lab, Docker).
• Demonstrate knowledge of modern cloud vaults such as AWS Secret Manager and Azure Key Vault.
• Assist in defining and implementing vaulting, rotation, and heartbeat policies for human and non‑human identities.
• Participate in the self‑service design and implementation of privilege or secrets life cycle management using enterprise identity governance solutions.
• Contribute to the development and establishment of governance processes for non‑human identity management.
• Support the development of policies for endpoint management solutions including Windows workstations, Mac OS, Linux, and Unix servers.

• Proven experience integrating, deploying, and configuring PAM and Secret Management technologies, with a strong focus on Cyber Ark and familiarity with other IAM solutions (Saviynt, SailPoint, Entra).
• In‑depth knowledge of privilege access management frameworks and ability to guide their integration.
• Practical expertise working with Cyber Ark stack, Hashi Corp Vault, Beyond Trust, and Delinea.
• Proficiency in implementing, managing, and maintaining enterprise‑level privilege access and secret management tools.
• Solid understanding of directory services (Active Directory, Azure AD, LDAP) and experience with MFA and SSO solutions.
• Strong problem‑solving and analytical skills, translating business requirements into technical specifications.
• Track record of delivering high‑quality client services within expected time frames.
• Excellent documentation skills for procedures, process documentation, and user documentation.

• Bachelor’s degree in a related field and 4–6 years of related experience, or a graduate degree and 2–4 years of related experience.
• Experience with PAM architecture and development within Cyber Ark, Hashi Corp, or other PAM solutions.
• Hands‑on experience with Cyber Ark Conjur and Hashi Corp Vault usage and functionality.
• Valid driver’s license in the US and/or valid passport; willingness and ability to travel.

• Professional certifications in Identity & Access Management (CISSP, CISM, Cyber Ark CDE, Hashi Corp Vault CE).
• Familiarity with additional IAM technologies (SailPoint, Forge Rock, Ping Identity, RSA).
• Knowledge of cloud‑based IAM solutions and experience with AWS, Azure, or Google Cloud.
• Understanding of regulatory compliance frameworks (GDPR, HIPAA, NIST, ISO 27001).
• Experience providing PAM services to clients across industries.
• Strong interpersonal and communication skills for client and cross‑functional collaboration.

We seek intellectually curious individuals with a passion for cybersecurity, broad IAM exposure, and the confidence to lead innovative ideas.

• Comprehensive compensation and benefits package, with base salary ranges varying by location.
• Hybrid work model: most client‑serving roles work in person 40–60 % of the time.
• Flexible vacation policy and paid time off, including EY Paid Holidays, Winter/Summer breaks, and other leaves.

EY accepts applications on an ongoing basis. Are you ready to shape your future with confidence? Apply now.

EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis, including arrest and conviction records, in accordance with applicable law. EY is committed to providing reasonable accommodation to qualified individuals with disabilities, including veterans with disabilities.

For assistance, call 1‑800‑EY‑HELP3 or email