Lead Privileged Access Management (PAM) Engineer

Hybrid 2 Days Onsite/3 Days Remote in Washington, DC

Our client seeks a Lead Privileged Access Management (PAM) Engineer to design, implement, and operate enterprise PAM solutions across a complex federal hybrid cloud environment. The role manages privileged identities, enforces access controls, and ensures secure access across cloud and on-prem systems. The position requires deep hands-on experience with CyberArk and modern identity platforms, with the ability to integrate PAM into enterprise security architecture and support Zero Trust initiatives

.
Due to client requirements, applicants must be willing and able to work on a w2 basis. For our w2 consultants, we offer a great benefits package that includes Medical, Dental, and Vision benefits, 401k with company matching, and life insuranc

e.Rate: $85.00 to $96.00/hr.

w2Responsibiliti

• esLead design, implementation, and administration of PAM solutions, primarily CyberAr
• k.Manage and optimize privileged account lifecycle management, including onboarding, rotation, monitoring, and deprovisionin
• g.Configure and support Microsoft Entra PIM for role-based privileged acces
• s.Integrate PAM solutions with identity providers and SSO platforms such as Okta and Entra I
• D.Develop and enforce policies for privileged access across enterprise system
• s.Coordinate with cybersecurity, infrastructure, and cloud teams to secure privileged access pathway
• s.Support PAM strategy and architecture planning across hybrid environment
• s.Implement automation and workflows for privileged access provisioning and approval
• s.Perform monitoring, auditing, and reporting on privileged access activit
• y.Support compliance with federal security standards and cybersecurity framework
• s.Provide technical leadership, mentoring, and guidance to junior engineers and administrator

s.Experience Requiremen

• ts7 years of experience in identity, access management, or cybersecurity engineerin
• g.3 years specializing in Privileged Access Managemen
• t.Hands-on experience with CyberArk implementation or administration, Microsoft Entra PIM, and Okta or identity/access management integratio
• n.Expertise in privileged account lifecycle management and PAM architecture across cloud and on-prem environment
• s.Experience integrating PAM with enterprise systems and security tool
• s.Strong understanding of IAM, RBAC, and privileged access control
• s.Experience supporting enterprise or federal IT environment
• s.Exposure to tools and platforms including AWS, Azure, Microsoft Defender, Microsoft Sentinel, Rapid7 InsightVM, Veracode, Jira, Confluence, Device42, Xacta, Intune, Microsoft Purview, Appian, and Oracl
• e.Preferred: Experience with federal agencies or regulated environments (FISMA, NIST), familiarity with Zero Trust, scripting with PowerShell or Python, and certifications such as CyberArk Defender/Sentry, CISSP, CISM, or Microsoft Identit
• y.Soft skills: Technical leadership, clear communication with diverse stakeholders, ability to operate in complex environments, and strong problem-solvin