Privileged Access Management PAM Engineer

Summary

Join our client, a leading multinational retail organization, as a PAM Engineer to play a key role in their IAM transformation program. This interim position, based in Brussels or remotely from Serbia, Greece, or Romania, runs until December 29, 2025, with potential extension. You will be instrumental in deploying and managing a centralized Privileged Access Management (PAM) solution, ensuring secure and auditable access to critical infrastructure. Key responsibilities include configuring and integrating the PAM solution across various environments, implementing core PAM capabilities like JIT access and session recording, and collaborating with various teams for seamless onboarding. The role requires strong PAM experience, familiarity with leading PAM tools, and a solid understanding of IAM concepts and compliance requirements.

Requirements

• 4+ years of experience in Privileged Access Management or related cybersecurity engineering roles
• Hands-on experience with leading PAM tools such as CyberArk, BeyondTrust, Delinea (Thycotic), or equivalent
• Experience in configuring password vaulting, session recording, and JIT access
• Solid understanding of IAM concepts, Zero Trust, and secure credential management
• Experience working in large-scale enterprise environments with hybrid or multi-cloud infrastructure
• Familiarity with compliance and audit requirements (e.g., GDPR, ISO 27001)
• Strong troubleshooting skills and ability to translate business needs into secure technical configurations

Responsibilities

• Configure, integrate, and support the centralized PAM solution across on-prem, hybrid, and multi-cloud infrastructures
• Enable and manage secure privileged access for both personal and non-personal accounts (e.g., service accounts)
• Implement core PAM capabilities:Just-in-Time (JIT) Access with time-bound, role-based provisioningSession Recording & Real-Time Monitoring with alerting and forensic traceabilityCredential Vaulting & Lifecycle Management with automated rotation
• Collaborate with application and infrastructure teams to onboard high-risk systems
• Support compliance with regional regulatory and data protection requirements
• Ensure seamless integration with existing IAM components, including IGA and AD/Entra ID
• Maintain documentation on configurations, onboarding processes, and audit controls
• Troubleshoot and resolve PAM-related technical issues and user onboarding blockers
• Provide input to PAM architectural decisions and contribute to continuous improvements

Preferred Qualifications

• Experience with scripting (e.g., PowerShell, Python) is a plus
• Fluent in English; Dutch or French is a plus