Privileged Access Management SME

• Define and maintain PAM architecture aligned with enterprise security strategies and Zero Trust principles.
• Develop and manage PAM roadmaps, standards, and design patterns.
• Ensure seamless integration of PAM solutions with IAM, SIEM, directory services, and cloud platforms.
• Lead deployments and onboarding of privileged accounts, including domain, service, local administrator, application, and DevOps identities.
• Design and configure credential vaulting, session brokering, Just-in-Time access, and secrets management.
• Provide technical leadership for PAM upgrades, migrations, and platform consolidations.
• Develop policies, procedures, and control frameworks to align with security standards (e.g., ISO 27001, NIST, CIS Controls).
• Support audits, internal controls testing, and regulatory inspections.
• Manage risk assessments related to privileged access and remediation planning.
• Establish operational models, runbooks, and SOPs for PAM.
• Define service KPIs and manage incident response activities involving privileged access.
• Drive automation and self-service capabilities for onboarding.
• Act as a technical advisor to IT Security leadership and program sponsors.
• Collaborate with application owners and infrastructure teams to securely onboard systems.
• Provide training and knowledge transfer to operational teams.
• Support vendor management and product evaluations.

Proclinical is seeking a skilled Privileged Access Management (PAM) Subject Matter Expert (SME) to lead the implementation and enhancement of PAM capabilities within an organization. In this role, you will establish robust security controls for privileged identities, ensure compliance with regulatory standards, and embed PAM as a core enterprise security function. You will collaborate with cross-functional teams to drive adoption, continuous improvement, and operational maturity of PAM solutions.

Please note that to be considered for this role you must have the right to work in this location or hold an EU passport., * Expertise in at least one enterprise PAM platform (e.g., Delinea, CyberArk, BeyondTrust, One Identity, HashiCorp Vault).

• Strong knowledge of Active Directory/Entra ID integration.
• Experience managing privileged accounts on Windows, Linux, and Unix systems.
• Understanding of networking, certificates, and identity security controls.
• Familiarity with SIEM integration and PAM alerting.
• Proven experience as a PAM engineer, architect, or SME in large enterprise environments.
• Experience designing Tier 0-Tier 1 controls and identity security frameworks.
• Background in regulated environments such as finance, healthcare, life sciences, or manufacturing.
• Strong communication and stakeholder management skills.
• Ability to translate technical controls into business risk language.
• Certifications such as CISSP, CISM, CCSP, or vendor-specific certifications (e.g., CyberArk Defender, Delinea Specialist) are a plus.