Principal Engineer - Privileged Access Management

What success looks like in this role:

This role will be a member of a small team in a fast-paced environment. This role will be responsible for growing and maturing Privileged Access Management (PAM) within Unisys Corporation. The individual must have a proven track record in delivering security and identity solutions that are functional, secure, scalable, and reliable. Key responsibilities include the design, implementation, and maintenance of Delinea (formerly Thycotic) solutions within our legacy Microsoft/Linux and multi-could environments. The ideal candidate will have in-depth experience with Delinea platform and its various integrations across on-prem and cloud environments.
 

Focus Areas:

Subject Matter Expert for the privileged access management program, managing the Delinea Platform and all its components, including configuration, administration, and maintenance.

Advisor to business units, technical teams, and others. Perform application integration assessments.  Collaborate, collect information and understand their needs and help to translate them into technical requirements and designs for PAM systems and processes; Help prepare for PAM onboarding activities and workflow changes and ensure privileged access management standards are followed.

• Design, build, maintain, and support integration options.

• Manage the onboarding of accounts into Delinea Platform and the vaulting of secrets.

• Create, maintain, and deliver content for end-user documentation and training.

• Analyze the incumbent legacy and cloud environments to identify technical and operational opportunities and develop continuous improvement action plans.

• Participate in and advise on disaster recovery, capacity planning, performance monitoring, and maintenance to ensure confidentiality, integrity, and availability.

• Work with the broader Cybersecurity, IT, and governance, risk, and compliance organizations to ensure policies and standards are current, accurate, and properly followed.

• Stay current with industry trends and emerging technologies to ensure the organization's PAM strategy remains effective and up-to-date.

• Provide 24x7 support as needed for emergency situations and planned maintenance activities

#LI-SP2

You will be successful in this role if you have:

Minimum Qualifications

Extensive Experience with Delinea (formerly Thycotic) PAM products and technologies including hands-on experience with management, administration, configuration, and troubleshooting of the various PAM components and account and vault data.

Experience within the Identity and access management domain
 

Preferred Qualifications
 

• Hands-on experience with DevOps and Agile methodologies, including integrating with Delinea Secret Server.

• Experience with Privileged Access Management principles, best practices, and technologies

• Familiarity with Just in Time, Least privilege and dynamic privilege concepts

• Strong understanding of virtualization and cloud platforms with focus on Microsoft Entra ID infrastructure and architecture. Familiarity with other cloud platforms, such as AWS, or GCP a plus.

• Knowledge of both Windows and Linux platforms

• Proficiency with programming/scripting tools (Visual Studio, PowerShell, etc.) a plus.

• Understanding of DevOps pipeline and CI\CD tools

• Self-starter with ability to work in a team environment, with demonstrated ability to manage multiple competing tasks simultaneously and complete work within allocated timeframes

• Strong knowledge of Information Security frameworks and security architecture frameworks (NIST CSF, etc.).

• Strong analytical and problem-solving skills

• Ability to work independently and as part of a team

• Relevant certifications such as CISSP, CISM, or CISA are a plus

• Delinea Secret Server/Server PAM certification a plus

• Understanding of security risks and compensating/mitigating controls, and ability to convey risk to all levels of the business, from management to operations and development teams

• Excellent communication and interpersonal skills, including writing and presentation skills

Unisys is proud to be an equal opportunity employer that considers all qualified applicants without regard to age, blood type, caste, citizenship, color, disability, family medical history, family status, ethnicity, gender, gender expression, gender identity, genetic information, marital status, national origin, parental status, pregnancy, race, religion, sex, sexual orientation, transgender status, veteran status or any other category protected by law.

This commitment includes our efforts to provide for all those who seek to express interest in employment the opportunity to participate without barriers. If you are a US job seeker unable to review the job opportunities herein, or cannot otherwise complete your expression of interest, without additional assistance and would like to discuss a request for reasonable accommodation, please contact our Global Recruiting organization at GlobalRecruiting@unisys.com or alternatively Toll Free: 888-560-1782 (Prompt 4).  US job seekers can find more information about Unisys’  EEO commitment here.