Sr IT Security Engineer - PAM

Work Schedule

Environmental Conditions

Job Description

About the Role

This is an outstanding opportunity to join Thermo Fisher Scientific Inc. a global leader in science and technology located in Frederick. As a Senior IT Security Engineer specializing in Privileged Access Management (PAM) you will lead ground-breaking initiatives across our vast enterprise. You will play a crucial role in crafting and optimizing our PAM strategies ensuring the secure management of enterprise secrets.

Key Responsibilities

Strategic PAM Leadership & SME Functions

• Own and drive PAM strategy for enterprise-wide privileged access domains and secrets management initiatives
• Serve as primary SME for PAM tooling optimization secrets hardening and enterprise-scale deployment
• Develop and implement annual PAM goals that align with organizational PMD objectives with a focus on automation and efficiency.
• Lead multi-functional PAM initiatives and represent the team in enterprise-wide security projects

Advanced Technical Operations & Automation

• Architect and implement complex PAM solutions for enterprise-wide secrets management
• Implement metrics and indicators to monitor PAM program efficiency
• Craft and maintain enterprise-level privileged access controls and automated secrets management solutions
• Drive automation initiatives for recurring PAM tasks and compliance reporting
• Lead comprehensive risk assessments for privileged access environments

Communication & Collaborator Management

• Simplify complex PAM concepts for non-technical audiences
• Develop and present PAM materials and strategic recommendations to leadership
• Build and own strong multi-functional relationships across IT and business units
• Proactively communicate PAM posture updates to business collaborators

Required Qualifications

Education & Certifications

• Bachelors degree in Cybersecurity Information Technology Computer Science or related field (equivalent experience accepted)
• Advanced PAM certifications required: CyberArk Certified Delivery Engineer BeyondTrust Certified Professional or equivalent
• Additional security certifications preferred: CISSP CISM GSEC or similar

Experience

• 6 years of enterprise security experience with focus on privileged access management
• 4 years of hands-on PAM operations experience in large-scale enterprise environments
• 3 years of demonstrated leadership in sophisticated PAM implementations

Technical Skills

• Expert-level knowledge of PAM principles and privileged access security frameworks
• Advanced proficiency in enterprise PAM platforms (Secret Server CyberArk BeyondTrust)
• Strong experience with directory services and identity management integration
• Demonstrated ability to architect tool-agnostic PAM solutions
• Experience with cloud PAM and DevOps secrets integration

Leadership & Consulting Skills

• Outstanding influence and persuasion abilities with a track record of driving PAM change
• Critical thinking and problem-solving skills to identify critical points for PAM transformation
• Strong consulting and advisory skills with experience challenging existing practices
• Superb communication abilities with capability to present complex PAM concepts to executive audiences
• Proven mentorship and training capabilities
• Cultural change leadership with experience overcoming organizational resistance

Specialized Proficiencies

• Deep understanding of threats to privileged accounts and credential security
• Experience with regulatory compliance requirements related to privileged access management
• Knowledge of threat modeling and risk assessment methodologies
• Familiarity with DevSecOps practices and automated PAM integration in CI/CD pipelines
• Understanding of zero trust architecture principles and PAM implementation

What We Offer

Join our elite organization and pioneer PAM transformation across our global enterprise. Drive significant impact in privileged access security while developing innovative solutions for handling massive volumes of enterprise secrets. We provide competitive compensation comprehensive benefits leadership development opportunities and the chance to become the shining light of PAM excellence!

Compensation and Benefits

This position may also be eligible to receive a variable annual bonus based on company team and/or individual performance results in accordance with company policy. We offer a comprehensive Total Rewards package that our U.S. colleagues and their families can count on which includes:

• A choice of national medical and dental plans and a national vision plan including health incentive programs

• Employee assistance and family support programs including commuter benefits and tuition reimbursement

• At least 120 hours paid time off (PTO) 10 paid holidays annually paid parental leave (3 weeks for bonding and 8 weeks for caregiver leave) accident and life insurance and short- and long-term disability in accordance with company policy

• Retirement and savings programs such as our competitive 401(k) U.S. retirement savings plan

• Employees Stock Purchase Plan (ESPP) offers eligible colleagues the opportunity to purchase company stock at a discount

For more information on our benefits please visit: Experience:

Senior IC