Security Engineer IV - Identity Systems...

The Privileged Access Management (PAM) team is responsible for safeguarding the organization's most critical systems by securely managing and controlling elevated access across the enterprise. The team designs, operates, and enhances key PAM platforms, including credential vaulting solutions that protect, rotate, and audit privileged credentials while enforcing least-privilege access. In addition, the PAM team supports highly available and resilient infrastructure connectivity that enables secure, seamless access for our Financial Advisors and Home Office associates. The PAM team helps ensure strong security controls, operational stability, and reliable access that support both regulatory requirements and business operations at scale.

What You'll Do:

Responsibilities for this position include designing, testing, debugging, documenting, and maintaining programs under minimal direction

• Design, implement, and operate enterprise Privileged Access Management (PAM) solutions with a focus on CyberArk platforms (Enterprise Password Vault, Endpoint Privilege Manager, and Privileged Session Manager).

• Engineer and maintain secure credential vaulting solutions using CyberArk and HashiCorp Vault to protect, rotate, and audit privileged credentials across on-prem and cloud environments.

• Manage and enhance privilege elevation and delegation controls using BeyondTrust PowerBroker for Linux and other least-privilege enforcement technologies.

• Administer and govern enterprise web password management solutions ensuring secure onboarding, policy enforcement, and user adoption.

• Support highly available PAM infrastructure and connectivity that enables secure access for Financial Advisors and Home Office associates while maintaining performance, stability, and resilience.

• Partner with infrastructure, cloud, and application teams to integrate PAM controls into platforms, pipelines, and operational workflows.

• Develop automation, monitoring, and alerting to improve PAM reliability, reduce operational risk, and strengthen audit and compliance readiness.

• Serve as a senior technical escalation point for PAM-related incidents, problem management, and root-cause analysis.

• Contribute to security architecture, standards, and roadmaps, helping to evolve PAM capabilities in alignment with Zero Trust and enterprise security strategies.

• 7+ years of experience in information security, infrastructure security, or identity and access management, with deep focus on Privileged Access Management.

• Hands-on engineering experience with CyberArk solutions, including EPV, EPM, and PSM in large-scale enterprise environments.

• Strong working knowledge of HashiCorp Vault, including secrets management, authentication methods, integration patterns, and operational best practices.

• Experience administering or supporting privilege management solutions such as BeyondTrust PowerBroker for Linux and enterprise password managers.

• Solid understanding of Linux systems, privilege escalation, sudoers, and service-based authentication models.

• Experience supporting highly available security platforms and infrastructure that serve distributed user populations.

• Proficiency with scripting and automation (e.g., PowerShell, Python, Bash) to improve efficiency and scale PAM operations.

• Strong understanding of security principles including least privilege, role-based access control, credential lifecycle management, and audit/compliance requirements.

• Ability to translate security requirements into practical, scalable technical solutions while partnering effectively with both technical and non-technical stakeholders.

• Preferred: Experience in financial services or other highly regulated environments.

Join a financial services firm where your contributions are valued. Edward Jones is a Fortune 500¹ company where people come first. With over 9 million clients and 20,000 financial advisors across the U.S. and Canada, we're proud to be privately-owned, placing the focus on our clients rather than shareholder returns. Behind everything we do is our purpose: We partner for positive impact to improve the lives of our clients and colleagues, and together, better our communities and society. We are an innovative, flexible, and inclusive organization that attracts, develops, and inspires performance excellence and a sense of belonging. People are at the center of our partnership. Edward Jones associates are seen, heard, respected, and supported. This is what we believe makes us the best place to start or build your career. View our Purpose, Inclusion and Citizenship Report (https://careers.edwardjones.com/blog/edward-jones-releases-annual-purpose-inclusion-and-citizenship-report/?codes=DIRECT&utm\_source=DIRECT) . *Fortune 500, published June 2024, data as of December 2023. Compensation provided for using, not obtaining, the rating.