Cyber Security Engineer – Privileged Account Management (PAM)

Exciting Opportunity at MSK: Cyber Security Engineer – Privileged Account Management (PAM) 

Do you want to join an innovative team and contribute to cancer research? Are you creative and want to tackle meaningful problems? Then join us here at MSK, where we can provide you with the opportunity to do all of those things! We are seeking a Cyber Security Engineer to join our team. We are searching for someone who has the right skills, who is eager to be part of a dynamic team and wants to be involved with the newest technologies.  If you are passionate about identity management and ready to contribute to impactful projects in Privileged Account Management (PAM), we want to hear from you! 

Role Overview 

• Design, implement, and maintain Privileged Account Management (PAM) solutions to manage user identities, roles, and access rights using the Delinea Secret Server or equivalent platform. 

• Conduct access reviews, certifications, and audits to ensure compliance with regulatory standards and internal policies. 

• Privileged Account Management engineering services, sophisticated technical support, troubleshooting, and monitoring of the enterprise systems. 

• Implement IAM security-centric and security-related information technology products and projects to support the organization. 

• Collaborate with stakeholders to analyze business requirements and translate them into technical solutions for identity governance and administration. 

• Provide support to end-users and administrators on PAM tools and processes. 

• Stay up-to-date with emerging technologies and best practices in Privileged Access Management to drive continuous improvement and innovation. 

Key Qualifications 

• Strong knowledge of Privileged Account Management platforms such as Delinea Secret Server or equivalent platform. 

• In-depth knowledge of identity and access management (IAM) concepts, including user provisioning, role-based access control (RBAC), and access certification. 

• Experience and knowledge of Java, C#, SQL, APIs/Web Services, Windows Servers, Linux Servers, PowerShell, Active Directory. 

• Experience using SIEM products like Splunk and tools such as Postman are an added benefit. 

• Having knowledge of SSO and Federated Services: PingFederate; Multi-Factor Authentication: PingID; Privileged Account Management: Delinea (Secret Server); Directory Services such as Active Directory and Entra ID would be an added benefit. 

Core Skills 

• A strong, confident communicator who can work with and provide security communications to our organization across departments and at all levels in addition to our external partners. 

• Remaining active in the security and technology industry with creative ideas for organizational solutions. 

• A good decision-maker, with proven success at making timely decisions that keep the organization moving forward. 

• Strong verbal and written communication skills; technical writing or desktop/web publishing skills. 

• Outstanding ability to analyze security data. 

• Ability to work effectively in a team-oriented environment. 

Additional Information: 

• Schedule: 9:00 AM – 5:00 PM EST, Monday – Friday with Flexible to work after hours, weekends and holidays when required. Must be available to provide 3rd level 24 x 7 support on a rotating schedule. 

• Location: Hybrid position with flexibility to work and/or attend meetings in New York City, Middletown NJ, regional sites, or vendor sites as needed. 

• Reporting to Associate Director, Identity & Access Management 

Helpful Links: 

Compensation Philosophy 

Benefits