We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
#alert
Back to search results
New

Senior CyberArk/PAM Engineer

Mass General Brigham (Enterprise Services)
United States, Massachusetts, Somerville
399 Revolution Drive (Show on map)
Jul 03, 2025
The Sr. CyberArk/PAM Engineer is responsible for designing, implementing, and optimizing privileged access management (PAM) solutions, with a focus on CyberArk. The role involves maintaining and enhancing security controls, identifying and mitigating vulnerabilities, and ensuring the effectiveness of PAM infrastructure. The engineer will work independently on complex projects, lead technical implementations, and coordinate across teams. Additionally, they will provide documentation, mentorship, and technical guidance to junior engineers.

Education & Certification:

Bachelor's or Master's degree in Computer Science or related field preferred; relevant certifications are a plus.

Principal Duties and Responsibilities:

  • Owns and leads the design, implementation, and maintenance of specific PAM components.
  • Acts as a technical lead, mentoring junior engineers and reviewing team contributions to ensure quality and best practices.
  • Identifies and proposes innovative security solutions and technologies.
  • Troubleshoots and resolves complex technical issues, including critical incidents.
  • Collaborates with internal teams, vendors, and stakeholders to enhance solution effectiveness.
  • Provides expert consulting support on PAM-related concerns across the organization.
  • Participates in after-hours and on-call support as needed.
  • Builds knowledge of Mass General Brigham systems, security policies, and service offerings.

Knowledge, Skills and Abilities

  • Privileged Access Management: Strong hands-on experience with CyberArk solutions (PAM, SIA, SCA, SWS), including privileged access auditing and event monitoring using CyberArk or SIEM tools like Splunk.
  • Cloud & Identity Management: Working knowledge of cloud platforms (Azure, AWS, GCP) for secrets management, and enterprise IAM tools such as Okta and Microsoft Entra, with understanding of authentication protocols (SAML, OAuth, OIDC).
  • Systems & Directory Services: Proficient with Windows and Linux environments, Microsoft Active Directory (on-prem and Azure AD), Group Policy, and LDAP-based directory services.
  • Communication & Collaboration: Strong communicator with the ability to engage all levels of technical and business stakeholders using tools like Microsoft Teams, email, and in-person interaction.
  • Work Ethic & Problem-Solving: Self-driven, organized team player with strong troubleshooting skills and the ability to work independently or collaboratively to resolve complex issues.
  • Process Knowledge: Familiarity with IT service management frameworks like ITIL.
  • M-F Eastern Business Hours required
  • Hybrid Onsite Flexible working model required weekly includes onsite in office (1-2 days per week weekly, must be flexible for business needs)
  • Remote working days require stable, secure, quiet, compliant working station


Mass General Brigham Incorporated is an Equal Opportunity Employer. By embracing diverse skills, perspectives and ideas, we choose to lead. All qualified applicants will receive consideration for employment without regard to race, color, religious creed, national origin, sex, age, gender identity, disability, sexual orientation, military service, genetic information, and/or other status protected under law. We will ensure that all individuals with a disability are provided a reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment.
Applied = 0

(web-8588dfb-vpc2p)