Talent.com
This job offer is not available in your country.
Manager Enterprise Security (Privileged Access Management)

Manager Enterprise Security (Privileged Access Management)

M&GPune
18 days ago
Job description

Through our behaviours of telling it like it is, owning it now, and moving it forward together with care and integrity; we are creating an exceptional place to work for exceptional talent.

  • CyberArk Administration : Configure, manage, and maintain CyberArk components such as the Vault, Password Vault Web Access (PVWA), Privileged Session Manager (PSM), Privileged Session Manager Proxy (PSMP), Central Policy Manager (CPM), Application Identity Manager (AIM), Application Access Manager (AAM), and Secure Web Sessions (SWS).
  • PAM Operations : Implement and maintain privileged access control policies, workflows, and automation to secure privileged accounts.
  • Privileged Account Lifecycle : Manage the onboarding, offboarding, and rotation of privileged accounts, ensuring compliance with security policies and minimising exposure to risk.
  • Incident Response & Monitoring : Monitor privileged account usage for unusual or unauthorised activities, respond to security incidents, and escalate issues when needed.
  • Audit & Compliance : Ensure all privileged access activities comply with internal policies and external regulatory standards.
  • Core Service Operation Hours : You will be expected to work shifts covering parts of the core service operation hours from 08 : 00 to 20 : 00 GMT (or BST during summertime), Monday to Friday. This excludes only those Bank Holidays that are observed in England. Please note that shifts will not cover the full span of the operation hours but will be distributed across the team to ensure coverage.
  • On-Call Support : In addition to your regular shifts, you will be required to participate in a rota to provide on-call support outside of the core service operation hours. This support is crucial for handling any critical, high, and medium service incidents that may arise.

Additional Responsibilities

  • User Support : Offering ongoing support for troubleshooting and user queries.
  • Security Awareness : Stay current on security best practices, threat landscapes, and PAM trends to continuously improve the security posture of the organisation.
  • Collaboration : Work closely with IT, cybersecurity, and compliance teams to ensure the alignment of PAM initiatives with broader security and business objectives.
  • Key Stakeholder Management

    Internal

  • Enterprise Security & Privacy BAU team
  • Enterprise IT
  • M&G business
  • External

  • Software Vendor
  • Knowledge, Skills, Experience & Educational Qualification

    Knowledge & Skills

  • CyberArk Expertise : Hands on experience with CyberArk PAM solutions, including the Vault, Password Vault Web Access (PVWA), Privileged Session Manager (PSM), Privileged Session Manager Proxy (PSMP), Central Policy Manager (CPM), Application Identity Manager (AIM), Application Access Manager (AAM), and Secure Web Sessions (SWS). A good understanding of best practices for privileged access management.
  • IAM & Access Control : Familiarity with Identity and Access Management (IAM) principles and controls models (e.g. RBAC, ABAC).
  • Security Frameworks & Compliance : Awareness of relevant security frameworks (NIST, ISO 27001) and industry compliance requirements (e.g. AAF, SOX).
  • Problem-Solving & Analytical Thinking : Strong troubleshooting and analytical skills for identifying security risks and implementing effective solutions.
  • Communication Skills : Good communication skills, with the ability to explain complex security concepts to both technical and non-technical stakeholders.
  • Attention to Detail : Strong attention to detail, particularly when managing privileged accounts and ensuring compliance with security policies.
  • A good understanding of authentication protocols, APIs, and integration patterns.
  • Experience

  • 6+ years of experience in cybersecurity, with at least 2 years of hands-on experience in Privileged Access Management (PAM).
  • Proven experience in administering and maintaining PAM tools such as CyberArk.
  • Relevant Qualifications

  • A degree in Computer Science, Information Security, or a related field.
  • CyberArk certifications (Defender, Sentry, CDE PAM, CDE CPC) are desirable.
  • M&G Behaviours relevant to all roles :

    Tell it like it is : Respectfully speaking up to create better ways forward – both direct and empathetic. Own it now : Putting your name on things with confidence to drive progress and result quickly. Move it forward together : Forming cross-functional teams to seize the right opportunities and solve real problems.

    with care and integrity.

    Diversity & Inclusion is vital to the success of our business :

    M&G is an inclusive employer. Enterprise Security and Technology is deeply committed to leading the way for M&G in celebrating diverse approaches and points of view; we believe that diversity drives innovation. We are building a culture where difference is valued and a workforce that is more representative of world, we live in. Therefore, we value applications from candidates of all races, religions, gender identifications, abilities, and sexual orientation.

    We have a diverse workforce and an inclusive culture at M&G Global Services, regardless of gender, ethnicity, age, sexual orientation, nationality, disability or long term condition, we are looking to attract, promote and retain exceptional people. We also welcome those who take part in military service and those returning from career breaks.

    Create a job alert for this search

    Enterprise Management • Pune