Government and Public Sector - Cybersecurity - Privileged Access Manager
Job description
From strategy to execution, the Government & Public Sector practice of Ernst & Young provides a full range of consulting and audit services to help our Federal, State, Local and Education clients implement new ideas to help achieve their mission outcomes. We deliver real change and measurable results through our diverse, high-performing teams, quality work at the highest professional standards, operational know-how from across our global organization, and creative and bold ideas that drive innovation. We enable our government clients to achieve their mission of protecting the nation and serving the people; increasing public safety; improving healthcare for our military, veterans, and citizens; delivering essential public services; and helping those in need. EY is ready to help our government build a better working world.
The opportunity
Our Cyber Privileged Access Management (PAS) Manager will provide technical and programmatic services to internal and external customers. They should understand the principles and best practices of Privileged Access Management and understanding of the importance of securing privileged accounts and access. The Manager will manage the lifecycle of privileged access, including provisioning, rotation, monitoring, and decommissioning of privileged accounts. This will require collaboration with IT, cybersecurity, and other departments to integrate PAM solutions with existing systems and workflows. They will be responsible for leading incident response activities related to privileged account breaches or misuse. Additionally, they will be responsible for:
- Providing expert guidance and training to staff on best practices for privileged access management and security awareness.
- Applying solutions for managing privileged access within cloud service provider tools (AWS IAM, Azure Directory)
- Addressing platform specific implementation requirements for Windows Server (Server 2012, Server 2022) and Linux operating systems (Redhat Enterprise Linux, Amazon Linux)
- Security Architecture
- Implementing and supporting NIST best practices for the Least Privilege Model for the enterprise
- Implementing advanced capabilities including Just-In-Time Provisioning for Privileged Access, Zero Trust principles, Privileged Account Session Management, Privilege Elevation and Delegation Management, and Lifecycle Management
- Working with other security engineers to develop and implement security policies and procedures as applied to cloud service provider hosted systems
- Supporting the development and enhancement of enterprise secrets management uses cases and features, including backend vault platforms
- Implementing Role Based Access Controls (RBACs) and manage ongoing infrastructure changes, ensuring implementation of least privilege and separation of duties best practices within cloud and on prem environments.
- Providing identity cloud expertise to inform strategic cloud policy and updated cloud governance and architecture to be aligned with PAM initiatives. Experience with Microsoft Azure is preferred but AWS experience is also considered valuable
- Scripting and automation; scripting languages like PowerShell, Python, or others for automating tasks and processes related to privileged access management tools
- Manage and govern privileged accounts on multiple systems and applications. Identify owners, who is using it (humans or systems), develop risk-based classification models, and partner with other teams to timely redress and remediate unsafe practices or accounts
- Experience with common tools for automation in owned-premise and cloud service provider operating environments (Jenkins/Cloudbees/Harness i.o, Github actions, AWS Lambda) beneficial
- Excellent problem-solving skills and the ability to work in a fast-paced, evolving environment.
- Strong troubleshooting skills to identify and resolve issues related to privileged access management tool implementations
- Supporting Continuous Diagnostics and Mitigation (CDM), work with other security, engineering, and operations teams to develop necessary safeguarding, logging, alert generation, etc. to detect relevant anomalies.
- Monitoring, recording, auditing, and analyzing privileged access, sessions, actions, across multi-cloud, hybrid-cloud, and on-prem systems
- Managing definition, planning, and delivery of work product through Agile SCRUM, Kanban.
To qualify for the role, you must have
- Bachelor’s Degree
- 5-8+ years of relevant experience
- Strong communication and leadership skills, with the ability to collaborate effectively across all levels of the organization
- Effective communication skills to articulate technical concepts to both technical and non-technical stakeholders
- Deep technical knowledge of PAM tools and technologies (e.g., CyberArk)
- High level of proficiency in Microsoft Office applications (Word, Excel, Project and PowerPoint)
- Ability to coordinate SMEs across multiple knowledge domains to offer solutions to USCIS mission needs
Due to the nature of our work in the Government and Public Sector, work may be required to be completed at client, EY and/or contractor sites. Our goal is to assign professionals to projects within a commutable distance of their work location office. In certain circumstances, travel may be required beyond your work location based on client and project needs. Candidates should be willing to travel on average 25% to 30% or more in a hybrid environment.
Ideally, you'll also have
- Consulting experience or experience working on technical projects
- MS in STEM degree
What we look for
We’re interested in intellectually curious people with a genuine passion for cybersecurity. With your broad exposure across Cyber Transformation, we’ll turn to you to speak up with innovative ideas that could make a lasting difference not only to us – but also to the industry. If you have the confidence in both your presentation and technical abilities to grow into a leading expert here, this is the role for you.
At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all.
What we offer
We offer a competitive compensation package where you’ll be rewarded based on your performance and recognized for the value you bring to our business. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. Under our flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances. You’ll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
• Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.
If you can demonstrate that you meet the criteria above, please contact us as soon as possible.
The exceptional EY experience. It’s yours to build.
EY | Building a better working world
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.
Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform, and operate.
Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.
EY is an equal opportunity, affirmative action employer providing equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, national origin, protected veteran status, disability status, or any other legally protected basis, in accordance with applicable law.
- Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
- Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
- Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
- Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.
Nearest Major Market: Washington DC