Assistant Vice President Enterprise Security (Privileged Access Management)

We are M&G Global Services Private Limited (formerly known as 10FA India Private Limited, and prior to that Prudential Global Services Private Limited). We are a fully owned subsidiary of the M&G plc group of companies, operating as a Global Capability Centre providing a range of value adding services to the Group since 2003. At M&G our purpose is to give everyone real confidence to put their money to work. As an international savings and investments business with roots stretching back more than 170 years, we offer a range of financial products and services through Asset Management, Life and Wealth. All three operating segments work together to deliver attractive financial outcomes for our clients, and superior shareholder returns.

M&G Global Services has rapidly transformed itself into a powerhouse of capability that is playing an important role in M&G plc’s ambition to be the best loved and most successful savings and investments company in the world.

Our diversified service offerings extending from Digital Services (Digital Engineering, AI, Advanced Analytics, RPA, and BI & Insights), Business Transformation, Management Consulting & Strategy, Finance, Actuarial, Quants, Research, Information Technology, Customer Service, Risk & Compliance and Audit provide our people with exciting career growth opportunities. Through our behaviours of telling it like it is, owning it now, and moving it forward together with care and integrity; we are creating an exceptional place to work for exceptional talent.

CyberArk Administration: Configure, manage, and maintain CyberArk components such as the Vault, Password Vault Web Access (PVWA), Privileged Session Manager (PSM), Privileged Session Manager Proxy (PSMP), Central Policy Manager (CPM), Application Identity Manager (AIM), Application Access Manager (AAM), and Secure Web Sessions (SWS).

PAM Operations: Implement and maintain privileged access control policies, workflows, and automation to secure privileged accounts.

Privileged Account Lifecycle: Manage the onboarding, offboarding, and rotation of privileged accounts, ensuring compliance with security policies and minimising exposure to risk.

Incident Response & Monitoring:  Monitor privileged account usage for unusual or unauthorised activities, respond to security incidents, and escalate issues when needed.

Integration with IAM & Security Tools: Collaborate with the Identity and Access (IAM) team and security operations to integrate CyberArk with other tools, applications, and platforms.

Automation & Scripting: Use automation and scripting (e.g. PowerShell) to streamline PAM processes, improve operational efficiency, and enhance security controls.

Audit & Compliance: Ensure all privileged access activities comply with internal policies and external regulatory standards. Conduct regular audits and reporting to demonstrate compliance.

Training & User Support: Provide training to internal users on CyberArk tools and PAM best practices, offering ongoing support for troubleshooting and user queries.

Documentation: Maintain accurate technical documentation, including PAM policies, configurations, procedures, and incident response protocols.

Security Awareness: Stay current on security best practices, threat landscapes, and PAM trends to continuously improve the security posture of the organisation.

Collaboration: Work closely with IT, cybersecurity, and compliance teams to ensure the alignment of PAM initiatives with broader security and business objectives.

& Skills

• CyberArk Expertise: In-depth knowledge of CyberArk PAM solutions, including the Vault, Password Vault Web Access (PVWA), Privileged Session Manager (PSM), Privileged Session Manager Proxy (PSMP), Central Policy Manager (CPM), Application Identity Manager (AIM), Application Access Manager (AAM), and Secure Web Sessions (SWS). Strong understanding of best practices for privileged access management.
• IAM & Access Control: Familiarity with Identity and Access Management (IAM) principles and controls models (e.g. RBAC, ABAC).
• Scripting & Automation: Proficiency in scripting languages such as PowerShell, Python, or other relevant languages for task automation and PAM integration.
• Security Frameworks & Compliance: Knowledge of relevant security frameworks (NIST, ISO 27001) and industry compliance requirements (e.g. AAF, SOX).
• Problem-Solving & Analytical Thinking: Strong troubleshooting and analytical skills for identifying security risks and implementing effective solutions.
• Communication Skills: Excellent communication skills, with the ability to explain complex security concepts to both technical and non-technical stakeholders.
• Attention to Detail: Strong attention to detail, particularly when managing privileged accounts and ensuring compliance with security policies.
• Strong understanding of authentication protocols, APIs, and integration patterns.

Experience

• 10+ years of experience in cybersecurity, with at least 3 years of hands-on experience in Privileged Access Management (PAM), with a focus on CyberArk.
• Proven experience in administering and maintaining PAM tools in a complex IT environment.
• Familiarity with Cloud Security, virtualisation technologies, and their impact on privileged access controls is a plus.

Relevant Qualifications

• A degree in Computer Science, Information Security, or a related field.
• Professional certifications such as CISSP, CISA, CompTIA Security+ are preferred.
• CyberArk certifications (Defender, Sentry, or Guardian) are highly desirable.

We have a diverse workforce and an inclusive culture at M&G Global Services, regardless of gender, ethnicity, age, sexual orientation, nationality, disability or long term condition, we are looking to attract, promote and retain exceptional people. We also welcome those who take part in military service and those returning from career breaks.