Manager, Privileged Access Management Architect and ...

The KPMG Advisory practice is at the forefront of transformation, offering excellent opportunities for individuals to advance their careers and expertise with KPMG. Looking ahead, we anticipate continued evolution and success within the practice, fostering both personal and professional development, thereby creating new pathways for growth. In this ever-changing market environment, our professionals must be adaptable and thrive in a collaborative, team-driven culture. At KPMG, our people are our number one priority. With a wealth of learning and career development opportunities, a world-class training facility, and leading market tools, we help our people continue to grow both professionally and personally. If you're looking for a firm with a strong team connection where you can be your whole self, have an impact, advance your skills, deepen your experiences, and have the flexibility and access to constantly find new areas of inspiration and expand your capabilities, then consider a career in Advisory.KPMG is currently seeking a Manager, Privileged Access Management Architect and Lead Engineer to join our Advisory Services practice.Responsibilities:Architect, design, and lead the implementation of Privileged Access Management (PAM) solutions to support enterprise-wide Identity & Access Management (IAM) programsServe as the technical lead engineer for PAM solution deployments (such as, CyberArk On-Prem and SaaS solutions), including implementation of privileged account management, session management, just-in-time access, and endpoint management capabilitiesPartner with IT and Security Architecture teams to help design PAM solutions and processes in alignment with project requirements and industry leading practices; partner with cloud engineering teams to integrate PAM capabilities across hybrid and multi cloud environmentsOversee end to end PAM lifecycle activities including discovery, testing, onboarding, access workflows, break glass processes, policy design, and integration with enterprise controls/platforms (such as, IdP, SIEM, ITSM, and IGA platforms)Design automation strategies to accelerate deployment tasks including onboarding, policy deployment, and reporting using industry standard tooling/methods (that is, Terraform, Ansible, PowerShell, Python, REST APIs, and more); design and implement automated integration across adjacent security solutions (for example: Crowdstrike, SIEM solutions, ServiceNow); conduct privileged access risk assessments and develop remediation strategies aligned to regulatory and security frameworks and requirements (such as, NIST CSF/800-53, ISO 27001, SOX, PCI DSS, and others)Lead customer-facing delivery, including scope estimation, risk/issue/dependency management, technical workshop facilitation, and technical workstream oversight; provide technical leadership, mentorship, and guidance to engineering teams while collaborating with cross functional stakeholdersAct with integrity, professionalism, and personal responsibility to uphold KPMG's respectful and courteous work environmentQualifications:Minimum five years of recent professional experience in IT security, IAM, or Privileged Access Management rolesBachelor's degree from an accredited college or university is required; CyberArk Certified Delivery Engineer (CDE) or CyberArk Endpoint Privilege Manager (EPM) Certification preferredStrong expertise in Privileged Access Management technologies with hands-on experience architecting and engineering CyberArk solutions; additional experience with secrets management platforms (such as, Conjur, HashiCorp) and other PAM platforms (such as Delinea, BeyondTrust) preferredExperience integrating PAM solutions with cloud platforms (for example: Azure, AWS, GCP); knowledge and expertise in systems and/or infrastructure administration (that is Windows, Linux, Databases, Cloud) and networking principles; proficiency designing a

Created: 2026-03-16