Senior Privileged Access Management (PAM) Engineer / CyberArk / Remote
Philadelphia, PA
100% Remote
Contract
$50/hr - $67/hr
This global life sciences company is seeking a Senior IAM Engineer to support and scale their Privileged Access Management program. Operating across biotech, pharma, and healthcare manufacturing, the organization is deeply focused on data security and compliance - making this a great fit for someone who thrives in a large, regulated enterprise environment. This is a remote, long-term contract with potential to flip to perm.
The CyberArk Engineer will act as the SME for their PAM stack, supporting both SaaS and on-prem deployments. Day-to-day responsibilities include managing vault architecture, onboarding accounts, maintaining PVWA, PSM, and CPM components, and building out integrations through CyberArk’s API. You’ll also play a lead role in aligning controls to internal security frameworks (CMMC, PCI-DSS, HIPAA), ensuring operational compliance. Strong troubleshooting skills, scripting or automation experience (PowerShell preferred), and familiarity with hybrid environments (Windows/Linux, AD/AzureAD) are important. Broader IAM understanding and experience in regulated industries will be a big plus.
Contract Duration: 6 - 12+ months
Required Skills & Experience
Tech Breakdown
Applicants must be currently authorized to work in the US on a full-time basis now and in the future.
The CyberArk Engineer will act as the SME for their PAM stack, supporting both SaaS and on-prem deployments. Day-to-day responsibilities include managing vault architecture, onboarding accounts, maintaining PVWA, PSM, and CPM components, and building out integrations through CyberArk’s API. You’ll also play a lead role in aligning controls to internal security frameworks (CMMC, PCI-DSS, HIPAA), ensuring operational compliance. Strong troubleshooting skills, scripting or automation experience (PowerShell preferred), and familiarity with hybrid environments (Windows/Linux, AD/AzureAD) are important. Broader IAM understanding and experience in regulated industries will be a big plus.
Contract Duration: 6 - 12+ months
Required Skills & Experience
- 10+ years in IT with a focus on Security and IAM solutions,
- 3+ years of experience designing, deploying, and maintaining CyberArk solutions including Enterprise Password Vault (EPV), Privileged Session Manager (PSM), and Central Policy Manager (CPM);
- Ability to comfortably develop privileged access policies, procedures, and standards aligned with best practices (CMMC, PCI-DSS, HIPAA);
- Proficiency with PowerShell scripting and CyberArk API integrations;
- Experience managing account onboarding, platform creation, vault structure, and policy configuration;
- Familiarity with Active Directory/Azure AD, LDAP, PLI, and SSO/MFA solutions and hybrid Windows/Linux infrastructure.
- Broader IAM knowledge or experience working in highly regulated industries like pharma or biotech;
- Active CyberArk Defender and Sentry certifications and/or additional certifications (e.g., Microsoft, AWS, Azure, CISSP) are a plus.
Tech Breakdown
- 60% CyberArk PAM platform management and administration (CPM, PVWA, PSM, Vault)
- 25% Automation and scripting (PowerShell, API integrations)
- 15% IAM governance, compliance frameworks, and security tooling integration
- 50% Hands-on administration, troubleshooting, and automation
- 50% Cross-functional collaboration with security, IT, and compliance teams.
Applicants must be currently authorized to work in the US on a full-time basis now and in the future.
You will receive the following benefits:
- Medical Insurance - Four medical plans to choose from for you and your family
- Dental & Orthodontia Benefits
- Vision Benefits
- Health Savings Account (HSA)
- Health and Dependent Care Flexible Spending Accounts
- Voluntary Life Insurance, Long-Term & Short-Term Disability Insurance
- Hospital Indemnity Insurance
- 401(k) including match with pre and post-tax options
- Paid Sick Time Leave
- Legal and Identity Protection Plans
- Pre-tax Commuter Benefit
- 529 College Saver Plan
Motion Recruitment Partners (MRP) is an Equal Opportunity Employer. All applicants must be currently authorized to work on a full-time basis in the country for which they are applying, and no sponsorship is currently available. Employment is subject to the successful completion of a pre-employment screening. Accommodation will be provided in all parts of the hiring process as required under MRP’s Employment Accommodation policy. Applicants need to make their needs known in advance.