PAM & PIM Engineer​ (F/M)

Summary of the role

Join a cybersecurity-driven team managing over 5,000 privileged accounts and 500 secured identities, backed by a €600K+ budget dedicated to strengthening our privileged access posture. As a PAM & PIM Engineer, you’ll par of the design, implement, and optimize privileged access systems that protect our most sensitive assets across a global infrastructure.

This role is ideal for engineers who thrive on automation, security architecture, and solving complex access challenges in high-stakes environments.

• Design, implement, and maintain PAM and PIM systems.​
• Develop and configure PAM and PIM tools: Ensure secure management and compliance.​
• Automate privileged access workflows: Provisioning, de-provisioning, access reviews.​
• Collaborate with security team: Integrate PAM and PIM with security architecture.​
• Expert support: Troubleshoot and resolve privileged access issues.​
• Monitor and optimize systems: Enhance security, minimize risks, improve efficiency.​

KEY METRICS OF THE ENVIRONMENT

• Privileged Accounts: 5,000+
• Secured Accounts: 500+
• Annual Budget: €600,000+
• Global Coverage: Multi-country deployment
• Tools in Use: CyberArk, Entra ID

Key Objectives & KPIs

• Achieve 100% onboarding of critical systems into PAM platform by end of 2026
• Automate 90% of privileged access workflows (provisioning, de-provisioning, reviews)
• Ensure 100% compliance with access reviews and audit requirements
• Maintain system uptime >99.9% for PAM/PIM infrastructure
• Deliver monthly dashboards on privileged access metrics and risk posture

KEY RESPONSIBILITIES

• Design, implement, and maintain PAM and PIM solutions.​
• Configure and automate workflows: Provisioning, de-provisioning, lifecycle management.​
• Collaborate with IT security teams: Integrate with broader security infrastructure.​
• Monitor and optimize systems: Ensure availability, security, and compliance.​
• Conduct audits and access reviews: Align with security policies and standards.​
• Develop automation scripts: For administrative tasks.​
• Support incident response: Address privileged access security incidents.​
• Implement security measures: MFA, session monitoring, password vaulting.​
• Provide technical guidance and training: Best practices and troubleshooting.​
• Create and maintain documentation: System configurations and processes.​
• Ensure business continuity: Maintenance and disaster recovery planning.​
• Stay updated on technologies: Recommend enhancements for privileged access management.

PROFILE

Academic background & Experience

• 5+ years of experience in implementing and managing Privileged Access Management (PAM) and Privileged Identity Management (PIM) systems, such as CyberArk, BeyondTrust, or Thycotic.​
• Hands-on experience with automation scripting for privileged access processes using languages like PowerShell, Python, or Bash.​
• Strong understanding of privileged access controls, including role-based access control (RBAC), least privilege access, just-in-time access, and MFA integration.​
• Familiarity with auditing and compliance standards such as SOX, ISO 27001, and PCI-DSS as they relate to privileged accounts and identities.​
• Experience in integrating PAM/PIM solutions with other security tools, such as SIEM, IAM, and network security systems.​
• Knowledge of operating systems, including Windows, Linux, and Unix, and their specific requirements for managing privileged accounts.​
• Experience working with API integrations for extending PAM and PIM system functionalities.​

Behavioral Capabilities​

• Strong problem-solving abilities, with the ability to identify issues in PAM/PIM systems and provide efficient, timely resolutions.​
• Excellent collaboration skills, working closely with IT security, operations, and compliance teams to ensure robust privileged access control.​
• Strong communication skills, with the ability to articulate complex technical concepts to both technical and non-technical stakeholders.​
• Ability to maintain high attention to detail and accuracy in managing sensitive privileged accounts and identities.​
• Proactive mindset in identifying areas for improvement and optimizing PAM/PIM processes and configurations.​
• Ethical in managing sensitive information and ensuring privileged access is granted only to authorized personnel.​
• Adaptability in handling complex security challenges and evolving technology requirements.

Skills

• Experience with PAM and PIM solutions, CyberArk and EntraID.​
• Knowledge of privileged access security principles, including the least privilege model and role-based access control (RBAC).​
• Familiarity with multi-factor authentication (MFA) and secure vaulting techniques for privileged accounts and identities.​
• Strong understanding of Windows and Unix/Linux operating systems, as well as knowledge of network protocols and security practices for protecting privileged access.​
• Experience with auditing and compliance requirements related to PAM and PIM, such as SOX, PCI-DSS, ISO 27001, and GDPR.​
• Strong communication skills, with the ability to collaborate across teams and explain technical concepts to both technical and non-technical stakeholders.​
• Basic knowledge of PowerShell, Python, or other scripting languages for automating administrative tasks.​
• Ability to maintain a detailed understanding of the organization’s IT infrastructure, including servers, applications, and network devices, to ensure proper privileged access management.

Why Join Us?

• Global Reach: Influence PAM strategy across multiple countries and business units.
• Technical Challenge: Solve complex access problems in high-security environments.
• Career Growth: Pathways to become PAM Architect, Cybersecurity Lead, or IAM Strategist.
• Collaborative Culture: Join a team that values innovation, transparency, and continuous improvement.

EQUANS

Equans is a world leader in the energy and services sector, with annual revenues of nearly €19,2 billion* and almost 800,000 projects.​

Equans has leading positions in Europe, which is the result of the history of energy construction in these countries, and strong presences in North and South America and in Oceania.​

With nearly 90,000 highly skilled employees, Equans has a strong geographic footprint, anchored by historic local brands. Equans provides its customers with excellent technical expertise in the design, installation, maintenance and operation of multi-technical facilities. This know-how is based on key skills. First of all, in electrical and thermal engineering – two strong points that help accelerate the reduction of our clients’ carbon footprint – but also in ventilation, refrigeration, mechanics and robotics, fire protection, energy renovation, digital solutions, IT, cyber security and telecommunications.​

The combination of these expertise allows us to offer efficient and optimised solutions at all stages of the energy chain, from production, storage and transport to usage.

(*) Turnover 2024 consolidated