PAM Engineer – Privileged Access & Identity Security (BeyondTrust, Okta, AD)

Description

Job Title: Privileged Access Management (PAM) Engineer

Location: Remote (U.S.-based) or Onsite as Required

Clearance: Must be a U.S. Citizen or Lawful Permanent Resident

Contract Type: Full-Time, Contract

About the Role

Dragonfli Group is seeking an experienced Privileged Access Management (PAM) Engineer to support a large federal agency in protecting critical digital identities and privileged credentials within its large-scale enterprise IT environment. This role will directly contribute to the implementation of cybersecurity strategies focused on securing networks, connected assets, hosted applications, and sensitive data.

As a key member of the security engineering team, the PAM Engineer will implement, configure, and maintain identity-centric solutions that ensure secure authentication, authorization, and privileged access governance across the agency's IT infrastructure.

Key Responsibilities

• Design, implement, and support enterprise-grade Privileged Access Management (PAM) solutions in line with the agency's cybersecurity objectives.
• Integrate PAM platforms with enterprise directory services, identity providers, and other security controls.
• Apply and enforce secure identity governance for privileged accounts, service accounts, and administrator roles.
• Configure and manage tools such as BeyondTrust, Okta, and SCIM integrations.
• Contribute to centralized visibility through Splunk by developing custom knowledge objects, dashboards, and alerting logic.
• Collaborate with teams across system administration, IAM, and incident response to ensure consistent enforcement of privileged access policies.
• Use Python scripting to automate PAM operations and streamline identity lifecycle processes.
• Manage and secure systems across both Windows and Linux environments, supporting secure credential storage and access workflows.
• Maintain compliance with USPS and federal IT security standards related to identity and access management.

Work Environment

• This position supports a critical federal mission and may require occasional onsite meetings.
• Candidates must reside and remain within the continental United States for the duration of the contract.
• Dragonfli Group enforces strict hiring integrity standards, including identity verification and compliance with USPS background checks.

Requirements

Minimum Qualifications

• 5+ years of hands-on IT security experience in large enterprise environments.
• Proven experience implementing or supporting PAM solutions within identity and access management programs.
• Strong technical knowledge in:
• BeyondTrust, Okta, and SCIM protocol
• Splunk (searches, dashboards, knowledge objects)
• Python scripting for automation
• Active Directory, LDAP, and directory services
• Windows and Linux system administration
• Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or a related field (or equivalent experience).

Preferred Qualifications

• Relevant technical certifications, such as:
• CISSP, CISA, CISM, GIAC, RHCE, CPTE, or CEH
• Strong oral and written communication skills, with the ability to document technical processes clearly.
• Ability to build and interpret flowcharts, develop action plans, and manage implementation schedules.
• Demonstrated success working cross-functionally with operations, engineering, and security teams.
• Experience influencing stakeholders and peer organizations in regulated or security-focused environments.

Skill(s)

Benefits

Insurance - health, dental, & vision

PTO & 11 Federal Holidays

401(k) employer match

Travel