Do you have experience with BeyondTrust Endpoint Security?
Do you have Experience designing and implementing EPM policies, rules, and configurations?
Great! Please read on as we have a job for you
Join a global, product‑led tech company as a Contract Security Engineer focused on Privileged Access and Endpoint Privilege Management. You’ll sit within the central Security / Identity & Access Management (IAM) function and take ownership of deploying and configuring a new BeyondTrust EPM solution across the organization.
You’ll be part of a small, specialist squad (Security + IT) driving a phased rollout, defining and tuning policies, automating where possible, and helping to establish best practices that will be adopted by IT, business teams, and a large engineering organisation.
This is an initial 6‑month B2B engagement with a potential for extension.
Your Tasks Will Include:
- Lead the deployment and configuration of BeyondTrust Endpoint Privilege Management (EPM) across the organization
- Design, implement, and fine‑tune EPM policies, rules, and configurations for different user groups and environments
- Work with Security / IAM / IT to plan and execute a phased rollout with early adopters, business teams, and then engineering
- Collaborate with internal stakeholders to gather feedback on the rollout and adjust policies and settings accordingly
- Create and maintain documentation which includes configuration guides, runbooks, deployment procedures, and best practices
- Contribute to testing and validation of EPM policies to minimise user disruption while maintaining strong security controls
- Identify opportunities to automate deployment, configuration, and ongoing management (e.g. via scripting in PowerShell, Bash, Python, etc.)
- Monitor progress against agreed project timelines and milestones, escalating risks or blockers when needed
- Work closely with the wider Identity & Access Management team to align EPM configuration with existing IAM standards and processes
- Provide knowledge sharing and basic enablement to internal teams on how to work effectively with the new EPM solution
To be a good fit for the Security Engineer role, you will have:
- Minimum of 1 years experience deploying, configuring, and managing policies with BeyondTrust Endpoint Privilege Management (EPM) in a production environment
- Good understanding of identity and access management concepts, particularly for human identities and endpoint controls
- Proven ability to design, implement, and tune security policies for different user groups (IT, business users, engineers) while balancing usability and security
- Practical experience working with IT, security, or IAM teams in a corporate environment
- Scripting and/or automation skills in at least one language (e.g. PowerShell, Bash, Python or similar), used to supp