Job Type: Permanent
Location: Hybrid – Edinburgh, Telford or Birmingham office. Expected 1–2 days per week in the office, subject to business needs.
Flexible working: All roles are open to part-time, job-share and other types of flexibility. We will discuss what is important to you and balancing this with business requirements during the recruitment process. You can read more about flexible working here: /careers/flexible-working
Closing date: 28/04/2026
Salary and benefits: £35,000 – £45,000 plus an indicative bonus range of 8–16%, private medical cover, 38 days annual leave, excellent pension, 12x salary life assurance, career breaks, income protection, 3x volunteering days and much more.
Who are we?
We’re Standard Life, a retirement specialist focused entirely on retirement savings and income. We champion the belief that everyone’s journey to and through retirement can be better, and for more than 200 years, we’ve been helping our customers plan and prepare for their financial futures.
Life today is increasingly complicated, uncertain and unpredictable. People move through different careers, face unexpected moments and navigate important choices. We offer our colleagues flexibility, trust and benefits that work for whatever life brings. In return we expect curiosity, connection, accountability and high standards. We make room for what matters - so you can bring your best, every day.
The role
As a Privileged Access Management (PAM) Engineer, you’ll help design, implement and operate Standard Life’s PAM services, securing privileged accounts and sessions across our technology estate.
This is a hands-on engineering role where you’ll apply your existing infrastructure or platform knowledge and build specialist cyber skills in areas such as Zero Trust, identity security and privileged access.
Key responsibilities include:
1. Implementing and supporting CyberArk PAM capabilities, including Vault, PVWA, PSM, CPM, EPM and SIA.
2. Onboarding privileged accounts across Windows, Linux, cloud and SaaS environments.
3. Working with infrastructure, cloud and application teams to embed PAM controls into day-to-day operations.
4. Integrating PAM with Microsoft Entra ID and Microsoft Sentinel to support monitoring and alerting.
5. Automating PAM processes using scripting (PowerShell, Python) to improve reliability and efficiency.
6. Applying policies for credential rotation, session isolation, recording and least-privilege access.
7. Troubleshooting PAM issues and supporting escalation during incidents.
8. Supporting audit, risk and regulatory activities with clear documentation and evidence.
What are we looking for?
CyberArk training will be provided, making this an ideal opportunity for experienced infrastructure or IT engineers who want structured support as they transition into cyber security.
We’re focused on potential as much as experience. You don’t need a traditional cyber background to apply.
Essential experience:
9. Experience as an Infrastructure, Platform, Cloud or IT Operations Engineer in an enterprise environment.
10. Practical knowledge of Windows or Linux systems, services, and administrative access.
11. An interest in cyber security and a clear motivation to move into a security-focused role.
12. Ability to work with technical teams to design and implement secure solutions.
13. Awareness of security, risk or compliance considerations in regulated environments.
Desirable:
14. Experience using or supporting CyberArk or another PAM solution.
15. Familiarity with identity or access management concepts.
16. Experience with PowerShell or Python for automation.
17. Exposure to Zero Trust or security frameworks (ISO 27001, NIST, ISF Standard of Good Practice).
We want to hire the whole version of you
We’re committed to ensuring that everyone feels accepted and welcome. If your experience looks different from what we’ve advertised, particularly if you’re transitioning into cyber security, we’d love to hear from you.
If you require any adjustments to the recruitment process, please let us know so we can help you to be at your best.
We’re reviewing applications as they come in, so apply early to avoid missing out.