Overview
The Sr. Security Engineer - IAM is responsible for designing, implementing, and maintaining privileged access solutions to secure critical systems and accounts. This role focuses on managing privileged credentials, enforcing least privileged principles, and ensuring compliance with organizational and regulatory standards. The Sr. Security Engineer - IAM works closely with InfoSec, IT operations, and application teams to deploy and optimize the Delinea PAM solution.
Responsibilities
- Technical Operations & Administration: Administer day-to-day Delinea operations—tenant configuration, discovery, onboarding, policy management, upgrades/patching, backups, and health monitoring—to ensure availability and performance.
- Integration & Automation: Integrate Delinea with enterprise identity, endpoint, and security tooling (e.g., AD/Azure AD, SSO/MFA, SIEM, ITSM) and automate onboarding/rotation/workflows using APIs and scripting.
- Security & Compliance: Implement privileged access controls (least privilege, JIT/JEA, session controls, credential rotation) and produce audit-ready evidence aligned to internal standards and frameworks (e.g., SOX, PCI, ISO 27001).
- Support & Troubleshooting: Lead triage and resolution of PAM issues across agents, connectors, network paths, authentication flows, and platform services, performing root-cause analysis and preventive remediation.
- Documentation & Knowledge Transfer: Create and maintain operational runbooks, architecture diagrams, and configuration standards while training administrators and stakeholders to ensure consistent, scalable PAM operations
- Complete all responsibilities as outlined in the annual performance review and/or goal setting.
- Complete all special projects and other duties as assigned.
- Must be able to perform duties with or without reasonable accommodation.
This job description is intended to describe the general nature and level of work being performed and is not to be construed as an exhaustive list of responsibilities, duties and skills required. This job description does not constitute an employment agreement and is subject to change as the needs of Cotiviti and requirements of the job change.
Qualifications
- Bachelor’s degree in technology discipline or equivalent professional experience.
- 5+ years of experience in Privileged Access Management or related security roles.
- Relevant Security certifications (e.g., CISSP, CISM, CIAM) preferred.
- Delinea Platform Expertise: Hands-on engineering with Delinea components such as Secret Server (vaulting/rotation/workflows), Privilege Manager (endpoint least-privilege), and related connectors/agents, including upgrades, migrations, and performance tuning.
- Enterprise Infrastructure & Platforms: Strong administration and integration experience across Windows Server/Wo