Senior Consultant - Privileged Access Management

Join EY as a vital member of our Identity and Access Management (IAM) team, where you will help clients understand and navigate their complex Enterprise Identity environments. Your role will be instrumental in assessing, enhancing, and creating innovative IAM solutions tailored to each client’s needs. This position allows you to utilize your technical expertise and business insight to make a significant impact on global cybersecurity. The Opportunity As a Senior Consultant, you will support the design, engineering, maintenance, and troubleshooting of a diverse range of privilege and secret management solutions. Collaborate with industry-leading professionals while applying cutting-edge tools and techniques to tackle pressing security challenges across various sectors. Your Key Responsibilities Assist in developing and implementing privilege and secret access management controls using tools like CyberArk, BeyondTrust, and HashiCorp. Engage in the design and integration of privileged access and secret management solutions. Participate in gathering requirements and defining use cases for privileged access management at the enterprise level. Configure and optimize discovery tools for privileged accounts and services, ensuring effective auto-detection and onboarding. Support the integration of target systems including Windows, Linux, Unix accounts, and various databases. Demonstrate knowledge of modern cloud vaults like AWS Secret Manager and Azure Key Vault. Help define and implement policies for vaulting, rotation, and management of identities. Contribute to lifecycle management for privileges and secrets using enterprise identity governance solutions. Assist in establishing governance processes for non-human identity management and endpoint management solutions. Skills and Attributes for Success Proven experience in deploying and configuring PAM and Secret Management technologies, particularly CyberArk. In-depth knowledge of privilege access management frameworks and their application in existing systems. Expertise in CyberArk, HashiCorp Vault, BeyondTrust, and related technologies. Strong understanding of enterprise directory services (Active Directory, Azure AD, LDAP) and implementing MFA and SSO solutions. Exceptional problem-solving abilities with experience in translating business needs into technical solutions. Record of delivering quality services and documentation related to IAM applications. To Qualify for the Role, You Must Have A bachelor's degree in a relevant field with 4-6 years of experience, or a graduate degree with 2-4 years of experience. Experience with PAM architecture and technologies within CyberArk or HashiCorp. Hands-on experience with CyberArk Conjur and HashiCorp Vault. A valid driver's license in the US and/or valid passport; willingness to travel. Ideally, You'd Also Have Professional certifications in Identity & Access Management such as CISSP or CyberArk certifications. Familiarity with additional IAM technologies like SailPoint and Ping Identity. Knowledge of cloud-based IAM solutions and platforms like AWS and Azure. Understanding of regulatory compliance frameworks related to IAM. Experience providing PAM services across multiple industries. Strong communication skills to collaborate effectively with clients and teams. What We Look For If you're passionate about cybersecurity and have a wide-ranging exposure across IAM, we want to hear from you! With your skills and innovative ideas, you will help shape the future of cybersecurity with EY. What We Offer You At EY, we provide a comprehensive benefits package that includes competitive compensation, medical and dental coverage, a flexible vacation policy, and supportive workplace initiatives. You’ll develop future-focused skills in a globally connected, diverse environment. Join us in shaping the future with confidence. Apply today to create a better working world.

Created: 2026-03-04