Associate Manager, IT – Privileged Access Management
Canada
Full Time
3 weeks ago
$80,100 - $100,100 USD
No Sponsorship
Key skills
CloudITSMPythonVaultPowerShellIAMEntra IDActive DirectoryREST APIZero Trust
About this role
Role Overview
- key technical lead responsible for the operations and assisting with modernization of the enterprise PAM ecosystem
- blend strategic oversight with technical execution – driving continuous improvement, automation and integration across CyberArk, Active Directory, Entra ID and related identity security platforms
- collaborate with internal teams and external partners to strengthen privileged account governance, enforce least privilege models and ensure operational excellence across hybrid and cloud environments
- assist with the end to end management of the enterprise PAM platform, ensuring secure onboarding, vaulting and lifecycle management of privileged credentials
- define, implement and continuously refine PAM policies, workflows and controls aligned with enterprise IAM standards and Zero Trust principles
- conduct assessments to identify privileged account risks and misconfigurations and drive remediation through automation or process redesign
- oversee integration of PAM with Active Directory, Entra ID, SIEM, EDR and ITSM tools to enable end to end visibility and enforcement of least privilege
- manage PAM health, performance and upgrades, monitoring vault replication, session management, connectors and API integrations to ensure system reliability
- partner with architecture, sec ops and infrastructure teams to embed PAM controls into DevOps pipelines, server builds and cloud workloads
- develop and maintain automation scripts (Python, REST API, PowerShell etc.) to streamline onboarding, access review and reporting processes.
Requirements
- years of progressive experience in Identity Security inclusive of leading PAM initiatives
- technical knowledge of CyberArk (Core PAS, CPM, PSM, PTA, CPM plug ins, REST APIs and Alero)
- good understanding of Entra ID and AD integration
- experience implementing PAM for servers, applications, DevOps pipelines and cloud workloads
- understanding of privileged session management, vault architecture, API integrations and connector configurations
- proficient in some scripting and automation using PowerShell, REST API, Python or equivalent
- solid knowledge of identity security frameworks, least privilege enforcement and Zero Trust access models.
- demonstrated ability to communicate complex technical issues to non-technical stakeholders and drive alignment across teams.
Tech Stack
- Cloud
- ITSM
- Python
- Vault
Benefits
- health insurance
- DCPP
- VRSP
- TFSA
- Business Resource Groups (BRGs)
- high discretionary bonus