Overview
Purpose and scope of this role includes- as a senior PAM engineer, within IAM team, the person will be responsible for architecting, designing and supporting PepsiCo's PAM (Privilege Access Management) solutions.
This role will be an individual contributor role.
Responsibilities
Provide Ops Support and contribute to the management of PAM Solution as detailed below:
- Maintain DEV, ITE, and PROD environments
- Ensure all environments are on the latest stable patches for all layers (application, OS, and Security)
- Ensure all environments are healthy, accessible, and functional
- Support hardware and software refreshes/upgrades coordinating with appropriate teams
- Partner with vendors as appropriate on issues
- Drive participation in the PAM onboarding process to ensure privileged accounts are managed appropriately, and password change requests are completed on time
- Implement/deliver AOP and Function funded initiatives for PAM areas
- Identify automation opportunities and gain efficiencies in the PAM services
- Account Management
- Enhance PAM onboarding and maintenance processes as appropriate
- Develop/Manage processes to keep PAM onboarding process/lists evergreen for all sensitive and privileged access for platforms/applications in scope
- Drive participation in the PAM onboarding process to ensure privileged accounts are managed appropriately, and password change requests are completed on time
- Create, manage, maintain quarterly control processes for PAM area
- Work with application owners, Controls team, as needed, and ensure PAM processes are kept up to date
- Provide account management and remediation services for methodologies such as but not limited to the following:
- Superuser Account Password Management (SAPM)
- Application Access Management (AAM)
- DAP (Dynamic Application Provider - formerly Conjur)
- Endpoint Protection Manager (EPM)
- SSH Key Management
- Privileged Threat Analytics (PTA)
Compensation and Benefits:
- The expected compensation range for this position is between $85,200 - $142,650.
- Location, confirmed job-related skills, experience, and education will be considered in setting actual starting salary. Your recruiter can share more about the specific salary range during the hiring process.
- Bonus based on performance and eligibility target payout is 10% of annual salary paid out annually.
- Paid time off subject to eligibility, including paid parental leave, vacation, sick, and bereavement.
- In addition to salary, PepsiCo offers a comprehensive benefits package to support our employees and their families, subject to elections and eligibility: Medical, Dental, Vision, Disability, Health, and Dependent Care Reimbursement Accounts, Employee Assistance Program (EAP), Insurance (Accident, Group Legal, Life), Defined Contribution Retirement Plan.
Qualifications
- Bachelor's degree preferably in engineering, Computer Science, Information Security with excellent communication skills and stakeholder management.
- A minimum of 4 years plus experience in Privileged Access Management using (CyberArk, BeyondTrust)
- A minimum of 8 + years in Identity & Access Management
- Experience with developing, planning, and implementing a large-scale enterprise-level CyberArk infrastructure, including but not limited to the following components:
- Enterprise Password Vault (EPV)
- Privileged Session Manager (PSM)
- Password Vault Web Access (PVWA)
- Central Password Manager (CPM)
- SSH Key Management
- Endpoint Protection Manager (EPM)
- Privileged Threat Analytics (PTA)
- Experience implementing PAM in the cloud environment (Azure, AWS, GCP)
- Knowledge of the following core concepts:
- Principle of least privileged access
- Principle of revocation of rights
- Principle of Just in Time access
- Experience with PIM governance and compliance, including the following:
- Performing Privileged Access Reviews
- Compliance Reporting
- Access Control Processes
- Experience working with large-scale, enterprise-level LDAP / Active Directory environments
- Experience in programming/scripting disciplines like the following:
- Ability to demonstrate analytical and critical thinking, attention to detail, solution orientation in a fast-paced environment
- Good written and oral communication skills in English
- A team-focused mentality with the proven ability to work effectively with diverse stakeholders
EEO Statement
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability status.
PepsiCo is an Equal Opportunity Employer: Female / Minority / Disability / Protected Veteran / Sexual Orientation / Gender Identity
If you'd like more information about your EEO rights as an applicant under the law, please download the available EEO is the Law & EEO is the Law Supplement documents. View PepsiCo EEO Policy.
Please view our Pay Transparency Statement