Cyber Security-Identity and Access Management Technology Analyst-VG-W6-ES and F0118

Technology Consulting

Title: Privileged Access Management Operations Analyst

EY is a global leader in assurance, tax, transaction and advisory services. Technology is at the heart of what we do and deliver at EY. Technology solutions are integrated in the client services we deliver and are key to our innovation as an organization. 

Fueled by strategic investment in technology and innovation, Client Technology seeks to drive growth opportunities and solve complex business problems for our clients through building a robust platform for business and powerful product engines that are vital to innovation at scale. As part of Client Technology, you’ll work with technologists and business experts, blending EY’s deep industry knowledge and innovative ideas with our platforms, capabilities, and technical expertise. As a catalyst for change and growth, you’ll be at the forefront of integrating emerging technologies from AI to Data Analytics into every corner of what we do at EY. That means more growth for you, exciting learning opportunities, career choices, and the chance to make a real impact.

EY Technology:

Technology has always been at the heart of what we do and deliver at EY. We need technology to keep an organization the size of ours working efficiently. We have 250,000 people in more than 140 countries, all of whom rely on secure technology to be able to do their job every single day.  Everything from the laptops we use, to the ability to work remotely on our mobile devices and connecting our people and our clients, to enabling hundreds of internal tools and external solutions delivered to our clients.  Technology solutions are integrated in the client services we deliver and is key to us being more innovative as an organization.

EY Technology supports our technology needs through three business units:

• Client Technology (CT) - focuses on developing new technology services for our clients. It enables EY to identify new technology-based opportunities faster and pursue those opportunities more rapidly.
• Enterprise Workplace Technology (EWT) – EWT supports our Core Business Services functions and will deliver fit-for-purpose technology infrastructure at the cheapest possible cost for quality services. EWT will also support our internal technology needs by focusing on a better user experience.
• Information Security (Info Sec) - Info Sec prevents, detects, responds to and mitigates cyber-risk, protecting EY and client data, and our information management systems.  

The opportunity

The Privileged Access Management Operations Analyst provides advanced analysis, recommendations, and implementation of privileged access management solutions to ensure best practice security across the enterprise. Coordinates with other teams and departments to review access rights and potential risks.

Your key responsibilities

• Implement and manage the privileged access lifecycle for Windows and Linux servers.
• Onboard, classify, and manage privileged accounts, including local admin, service accounts, and break-glass identities.
• Configure credential rotation policies and enforce strong authentication standards.
• Deploy and maintain Just-in-Time (JIT) and Just-Enough Access (JEA) models.
• Integrate PAM with cloud-native identity frameworks such as AWS IAM Roles, Azure Managed Identities, and GCP Service Accounts.
• Operate and administer CyberArk components (Safes, CPM, PSM/PSMP) and cloud-native secret stores.
• Automate PAM tasks using PowerShell, Python, or Bash.
• Use Infrastructure-as-Code (Terraform preferred) to define and deploy PAM integrations and policies.
• Work with the business to be able to accomplish Privilege Access Operations standard workflows as well as efficiently resolve complex incidents through creative problem solving.
• Work with enterprise stakeholders to understand business requirements and IT standards that influence how PAM solutions/services should operate.
• Be action oriented; taking on new opportunities and tough challenges with a sense of urgency, high-energy and enthusiasm.
• Identifies and recommends opportunities for continuous improvement. Supports the implementation of changes to department policies and procedures to meet changing business needs and to achieve department objectives.
• Ability to mentor and provide oversight to analysts on the Privileged Access Management Team.

Skills and attributes for success

• A team player with strong analytical, communication and interpersonal skills
• Constantly updating yourself about new technologies in the market
• A winning personality and the ability to become a trusted advisor to the stakeholders

To qualify for the role, you must have

• Basic administration skills for Windows Server and Linux systems. (Required)
• Foundational understanding of IAM concepts and privileged access principles. (Required)
• Exposure to AWS, Azure, or GCP services related to compute, identity, and access management. (Required)
• Scripting experience using PowerShell, Python, or Bash. (Required)
• Familiarity with vaulting/secrets management solutions (CyberArk, AWS Secrets Manager, Azure Key Vault). (Required)
• Experience with Terraform or other Infrastructure-as-Code tools. (Preferred)
• Familiarity with CyberArk Enterprise Password Vault (EPV), EPM, PSM and WPM. (Preferred)
• Hands-on experience with log analysis, security monitoring, or SIEM tools. (Preferred)
• Experience in Change/Incident Management Tools such as Service Now
• A team player and quick learner with a heavy emphasis on communication skills.
• Understanding of the Sun Model and how companies operate on the global scale.
• Minimum 5-7 years related work experience in information security, system administration, cloud engineering, network administration or IT preferred.
• Nice to Have: Tools - like checkmarx one, Snyk, Blackduck, SCA

Ideally, you’ll also have

• Strong verbal and written communication, facilitation, relationship-building, presentation and negotiation skills.
• Be highly flexible, adaptable, and creative.
• Comfortable interacting with senior executives (within the firm and at the client)

What we look for

• Collaborate with IT and business units to evaluate risks and ensure secure implementations.
• Support adoption of new security initiatives.
• Investigate potential security violations.
• Bachelor's degree in a related field or equivalent experience.
• Ability to communicate findings and recommendations effectively across technical and business teams.
• Strong teamwork, work ethic, product mindset, client centricity and a relentless commitment to EY values.

What working at EY offers

We offer a competitive remuneration package where you’ll be rewarded for your individual and team performance. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well-being, insurance, savings and a wide range of discounts, offers and promotions. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you