About The Position
We’re building a world of health around every individual — shaping a more connected, convenient and compassionate health experience. At CVS Health®, you’ll be surrounded by passionate colleagues who care deeply, innovate with purpose, hold ourselves accountable and prioritize safety and quality in everything we do. Join us and be part of something bigger – helping to simplify health care one person, one family and one community at a time. Position Summary The Privileged Access Management (PAM) Security Engineer will play a critical role in safeguarding enterprise systems by designing, implementing, and maintaining secure access controls for privileged accounts. This role will focus on the deployment and operational support of PAM solutions—primarily BeyondTrust—across a diverse technology landscape including Active Directory, Windows, UNIX, MSSQL, Oracle, and cloud platforms (Azure, GCP, AWS). The engineer will collaborate with cross-functional teams to ensure compliance with enterprise security standards (e.g., ISTS, GRC), streamline credential management, and support automation of access provisioning and deprovisioning processes.
Requirements
- 5+ years of experience in Identity and Access Management (IAM) with a focus on Privileged Access Management.
- 3+ years of hands-on experience with BeyondTrust or similar PAM platforms (e.g., CyberArk, Thycotic).
- 3+ years of experience with Active Directory, LDAP, and enterprise authentication protocols.
- 3+ years of experience onboarding privileged accounts for infrastructure and applications (e.g., Oracle, Linux/Unix, MSSQL).
Nice To Haves
- Proven ability to troubleshoot access issues and manage policy updates in a complex environment.
- Familiarity with password rotation, vaulting, and service account onboarding processes.
- Excellent communication and documentation skills.
- Experience with API integrations for PAM automation and service account onboarding.
- Familiarity with IAM modernization tools such as SailPoint, Ping, or Neo4j.
- Prior involvement in enterprise-wide remediation or migration projects (BeyondTrust).
- CISSP, CISM, or other relevant security certifications.
Benefits
- Affordable medical plan options, a 401(k) plan (including matching company contributions), and an employee stock purchase plan.
- No-cost programs for all colleagues including wellness screenings, tobacco cessation and weight management programs, confidential counseling and financial coaching.
- Benefit solutions that address the different needs and preferences of our colleagues including paid time off, flexible work schedules, family leave, dependent care resources, colleague assistance programs, tuition assistance, retiree medical access and many other benefits depending on eligibility.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
