PAM Specialist (Privileged Access Management)

• Role: PAM Specialist (Privileged Access Management)
• Location: Abingdon, UK With Hybrid (2 to 3 Days/Week onsite)
• Contract: Contract | InsideIR35 | 6 months (possible and likely extension)

Overview:
The Client is seeking a PAM (Privileged Access Management) Specialist to implement, configure, and manage the BeyondTrust PAM platform. The role is technically focused, requiring hands-on experience with BeyondTrust tools to secure privileged accounts, manage credentials, monitor sessions, and enforce least privilege policies. The specialist will collaborate with infrastructure, applications, and security teams to maintain a robust PAM environment.

Key Responsibilities:

• Implement and configure BeyondTrust Password Safe and Privileged Remote Access
• Automate password rotation and manage privileged account workflows
• Record, monitor, and manage privileged sessions
• Onboard Servers, network devices, and applications to PAM
• Discover and vault service/application/shared accounts
• Configure session proxies, Just-in-Time access, and break-glass procedures
• Integrate PAM with SIEM and Active Directory/Entra ID
• Manage upgrades, patches, and troubleshoot platform issues
• Maintain documentation, policies, and runbooks
• Support audit and compliance reporting

Essential Requirements:

• Hands-on PAM implementation and management experience
• Privileged Remote Access expertise
• Credential vaulting, password rotation, and session monitoring experience
• Onboarding Windows, Linux/Unix, and network devices to PAM
• Knowledge of AD privileged accounts and SIEM integration
• Understanding of ISO 27001/NIST CSF frameworks
• Strong troubleshooting and documentation skills

Desirable:

• Degree in InfoSec, CS, or STEM
• Beyond Trust certifications
• Experience with other PAM platforms (CyberArk, Delinea)
• Scripting skills (PowerShell, Python)
• Database privileged access experience
• Public sector or critical infrastructure experience
• Knowledge of OT/ICS environments