Job Description We are seeking a highly skilled Privileged Access Management (PAM) Engineer to join our Identity & Access Management (IAM) team. This role is critical for designing, implementing, and supporting UCSFs enterprise-wide PAM solutions that secure access to sensitive systems and applications for both Windows, Linux and other environments. The ideal candidate will bring deep expertise in PAM principles, Delinea PAM products, Active Directory integration, Linux AD-bridging, and large-scale hybrid environments. We are a company committed to creating inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity employer that believes everyone matters. Qualified candidates will receive consideration for employment opportunities without regard to race, religion, sex, age, marital status, national origin, sexual orientation, citizenship status, disability, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to Human Resources Request Form (https://airtable.com/app21VjYyxLDIX0ez/shrOg4IQS1J6dRiMo) . The EEOC "Know Your Rights" Poster is available here (https://www.eeoc.gov/sites/default/files/2023-06/22-088\_EEOC\_KnowYourRights6.12ScreenRdr.pdf) . To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ . Skills and Requirements PAM Platform Ownership: o Administer and maintain Delinea Secret Server for privileged account vaulting, session management, and policy enforcement. Identity & Access Management: o Implement and manage Linux AD-binding using Delinea Server Suite (Centrify) for consistent identity and access controls across Linux/Unix systems. o Manage Linux/Unix Kerberos authentication and AD-binding strategies. Enterprise Integration: o Onboard servers, applications, and accounts (service, functional, user, etc.) into PAM. o Integrate PAM solutions with ServiceNow for ticketing and workflow automation. o Ensure service account secret management in zero-downtime environments. System Management: o Manage enterprise NFS shares and permissions for hybrid Linux environments. o Support a hybrid cloud/on-prem Linux environment of 2000+ servers, ensuring security and compliance. Policy & Security: o Create, implement, and maintain PAM policies based on UC/UCSF security governance and least privilege principles. o Collaborate with other IAM and IT teams to align PAM with IGA,SSO and other IT initiatives. Documentation & Evangelism: o Create and maintain accurate, detailed technical documentation for PAM processes and procedures. o Host PAM governance workgroups, promoting best practices and adoption across teams. Operational Excellence: o Provide outstanding customer service in managing requests and resolving incidents through ticket systems. o Partner with application owners and infrastructure teams to enable secure PAM solutions. null We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to HR@insightglobal.com.