Job Title:
Lead PAM Engineer
Location:
Fully Remote or Hybrid – can be based anywhere in UK or Ireland
Contract Length / Perm:
6 months, renewable
Pay Rate/Salary:
€1,000 – 1,100 per day
Key Responsibilities
* Design & Implementation
* Lead the deployment and configuration of BeyondTrust EPM/PMUL across enterprise endpoints (Windows, macOS, Linux).
* Develop policies to enforce least privilege, application control, and just-in-time elevation.
* Integrate BeyondTrust PAM with other enterprise security tools (SIEM, IAM, vulnerability management).
* Develop policies in Password safe to ensure privileged accounts are secured.
* Create Automation using API's for onboarding of assets/users Operations & Support
* Maintain, monitor, and troubleshoot PAM infrastructure and endpoint agents.
* Respond to incidents and service requests related to
* Analyze logs, alerts, and user behaviours to refine security policies.
* Policy & Governance
* Collaborate with security, compliance, and IT operations teams to align PAM policies with corporate security standards.
* Contribute to identity & access management (IAM) and privileged access management (PAM) strategies.
* Document configurations, policies, and standard operating procedures.
* Continuous Improvement
* Conduct proof-of-concepts for new PAM features and integrations.
* Provide recommendations to optimize endpoint security without impacting user productivity.
* Develop automation scripts (PowerShell, Python, etc.) for reporting and operational efficiency.
Qualifications
Required Skills & Experience:
* 3–5+ years of experience in endpoint security engineering or privileged access management.
* Hands-on experience with BeyondTrust solutions (design, deployment, policy management).
* Strong knowledge of Windows and macOS endpoint administration.
* Familiarity with Active Directory, Group Policy, and enterprise endpoint management tools (SCCM, Intune, Jamf).
* Solid understanding of principle of least privilege (PoLP) and zero trust security models.
* Experience with scripting languages (PowerShell, Python, or similar).
Preferred Skills:
* BeyondTrust certifications
* Experience with BeyondTrust Password Safe, Privileged Remote Access, or other PAM tools.
* Familiarity with SIEM solutions (Splunk, Sentinel, QRadar) and integration practices.
* Knowledge of compliance frameworks (SOX, PCI-DSS, HIPAA, ISO