Senior Privileged Access Management (PAM) Engineer / CyberArk / Remote

This global life sciences company is seeking a Senior IAM Engineer to support and scale their Privileged Access Management program. Operating across biotech, pharma, and healthcare manufacturing, the organization is deeply focused on data security and compliance - making this a great fit for someone who thrives in a large, regulated enterprise environment. This is a remote, long-term contract with potential to flip to perm.

The CyberArk Engineer will act as the SME for their PAM stack, supporting both SaaS and on-prem deployments. Day-to-day responsibilities include managing vault architecture, onboarding accounts, maintaining PVWA, PSM, and CPM components, and building out integrations through CyberArk’s API. You’ll also play a lead role in aligning controls to internal security frameworks (CMMC, PCI-DSS, HIPAA), ensuring operational compliance. Strong troubleshooting skills, scripting or automation experience (PowerShell preferred), and familiarity with hybrid environments (Windows/Linux, AD/AzureAD) are important. Broader IAM understanding and experience in regulated industries will be a big plus.

Contract Duration: 6 - 12+ months


Required Skills & Experience

• 10+ years in IT with a focus on Security and IAM solutions,
• 3+ years of experience designing, deploying, and maintaining CyberArk solutions including Enterprise Password Vault (EPV), Privileged Session Manager (PSM), and Central Policy Manager (CPM);
• Ability to comfortably develop privileged access policies, procedures, and standards aligned with best practices (CMMC, PCI-DSS, HIPAA);
• Proficiency with PowerShell scripting and CyberArk API integrations;
• Experience managing account onboarding, platform creation, vault structure, and policy configuration;
• Familiarity with Active Directory/Azure AD, LDAP, PLI, and SSO/MFA solutions and hybrid Windows/Linux infrastructure.

Desired Skills & Experience

• Broader IAM knowledge or experience working in highly regulated industries like pharma or biotech;
• Active CyberArk Defender and Sentry certifications and/or additional certifications (e.g., Microsoft, AWS, Azure, CISSP) are a plus.

What You Will Be Doing
Tech Breakdown

• 60% CyberArk PAM platform management and administration (CPM, PVWA, PSM, Vault)
• 25% Automation and scripting (PowerShell, API integrations)
• 15% IAM governance, compliance frameworks, and security tooling integration

Daily Responsibilities

• 50% Hands-on administration, troubleshooting, and automation
• 50% Cross-functional collaboration with security, IT, and compliance teams.

Applicants must be currently authorized to work in the US on a full-time basis now and in the future.

You will receive the following benefits:

• Medical Insurance - Four medical plans to choose from for you and your family
• Dental & Orthodontia Benefits
• Vision Benefits
• Health Savings Account (HSA)
• Health and Dependent Care Flexible Spending Accounts
• Voluntary Life Insurance, Long-Term & Short-Term Disability Insurance
• Hospital Indemnity Insurance
• 401(k) including match with pre and post-tax options
• Paid Sick Time Leave
• Legal and Identity Protection Plans
• Pre-tax Commuter Benefit
• 529 College Saver Plan

Motion Recruitment Partners (MRP) is an Equal Opportunity Employer. All applicants must be currently authorized to work on a full-time basis in the country for which they are applying, and no sponsorship is currently available. Employment is subject to the successful completion of a pre-employment screening. Accommodation will be provided in all parts of the hiring process as required under MRP’s Employment Accommodation policy. Applicants need to make their needs known in advance.