Privileged Access Management (PAM) Consultant - Shropshire - 3 days a week onsite - Contract role
We’re looking for a seasoned Privileged Access Management (PAM) Consultant to lead strategic assessments and design robust PAM solutions across a complex, multi-platform hosting environment. This is a high-impact role focused on reducing risk, enhancing operational security, and aligning access control with modern best practices.
You’ll work closely with infrastructure, security, and operations teams to evaluate current access models, identify over-privileged accounts, and architect scalable PAM strategies tailored to diverse on-premises systems.
🔍 Key Responsibilities
1. Perform in-depth assessments of privileged access across enterprise infrastructure
2. Identify gaps and risks in access provisioning, especially around elevated permissions (, root, admin)
3. Recommend improvements using RBAC, ABAC, and least privilege principles
4. Design PAM architectures that support secure delegation across Windows, Linux, Solaris, and AIX platforms
5. Evaluate and compare PAM solutions (, CyberArk, BeyondTrust, Delinea) for technical fit and scalability
6. Produce detailed documentation including architecture diagrams, risk assessments, and implementation roadmaps
7. Collaborate with cross-functional teams to align PAM strategies with business and technical goals
8. Support PoC and pilot deployments to validate solution effectiveness
9. Provide expert guidance on credential vaulting, session monitoring, access workflows, and policy enforcement
🧠 Required Skills & Experience
10. 10+ years in PAM consulting and implementation, with a focus on infrastructure assessment and solution design
11. Deep expertise in RBAC and ABAC models
12. Strong understanding of on-premises hosting environments
13. Hands-on experience with Windows, Linux, Solaris, and AIX
14. Familiarity with Active Directory, LDAP, SSH key management, and service account governance
15. Proficiency with PAM tools such as CyberArk, BeyondTrust, Delinea
16. Knowledge of identity federation and authentication protocols (Kerberos, SAML, OAuth)
17. Exceptional analytical, documentation, and presentation skills
Job Title: Privileged Access Management (PAM) Consultant
Location: West Midlands, UK
Job Type: Contract
Trading as TEKsystems. Allegis Group Limited, Maxis 2, Western Road, Bracknell, RG12 1RT, United Kingdom. No. 2876353. Allegis Group Limited operates as an Employment Business and Employment Agency as set out in the Conduct of Employment Agencies and Employment Businesses Regulations 2003. TEKsystems is a company within the Allegis Group network of companies (collectively referred to as "Allegis Group"). Aerotek, Aston Carter, EASi, Talentis Solutions, TEKsystems, Stamford Consultants and The Stamford Group are Allegis Group brands.