Job Purpose

Responsible for protecting the bank’s IT systems, servers, databases, and networks. This includes implementing and managing PAM and IAM processes to secure access, designing and maintaining computer security architecture, and developing cybersecurity solutions aligned with established security requirements.

Principle Responsibilities

• Administer and maintain overall enterprise PAM solution architecture, including Vaults, PSM, CPM, and PVWA.
• Manage the lifecycle of privileged accounts in the PAM solution: onboarding, offboarding, rotation, and monitoring.
• Develop and enforce policies for privileged access, including session recording, just-in-time access, and credential rotation.
• Enforce and review safe access policies for privileged accounts, including dual control/dual approval of workflows.
• Monitor and audit privileged access sessions and alerts and coordinate investigations for anomalies and violations.
• Troubleshoot technical issues with the PAM platform and its integrations.
• Manage and secure remote access sessions for privileged users, ensuring compliance with policy.
• Provide operational support for PAM users and services.
• Assist in incident response and forensic investigations related to privileged accounts and access breaches.
• Maintain and update documentation, SOPs, and operational procedures for PAM and IAM processes.
• Administer general IAM operations: user provisioning, de-provisioning, access approvals, and workflow management.
• Monitor and enforce segregation of duties (SoD) policies and controls.
• Support internal and external audits, including preparation, evidence collection, and reporting for privileged and general access.
• Recommend and implement improvements to access policies, controls, and PAM/IAM operations.
• Participate in IAM-related projects such as SSO, MFA, and role-based access enhancements.
• Maintain knowledge of best practices for privileged, remote, and enterprise access management.
• Collaborate with Security Operations and IT teams on access-related incidents or policy violations and recommend improvements to access policies and controls.
• Lead information security awareness and training programs (SAT program) to inform and motivate staff on cybersecurity matters.

Qualifications Required

Knowledge

• Understanding Identity and Access Management (IAM) concepts, including authentication, authorization, RBAC, PAM, and UAM.
• Hands-on experience specifically on PAM solutions, such as CyberArk/ Beyond-Trust solution infrastructure and administration.
• Understanding networking concepts, principles, and network security standards.
• Working knowledge of IT desktop applications, computer technologies, and operating systems (Windows/Linux).
• Knowledge of IT security, virtualization, operating systems, and cloud services (Azure, AWS, GCP).

Skills

• Strong problem-solving skills with the ability to respond and resolve issues efficiently.
• Excellent interpersonal and oral communication skills.
• Knowledge of security issues and products, enabling complex issues to be quickly diagnosed and resolved.
• Effective time management and the ability to work independently or coordinate with teams.
• Capability to conduct security awareness training and communicate cybersecurity concepts effectively.

Qualifications

• At least 3 years of hands‑on experience in, Privileged Access Management (PAM) tools, Identity & Access Management (IAM), Active Directory, Azure AD, and related access security technologies.
• Possession of a bachelor’s degree in computer systems/technology/ Cybersecurity or related academic field.
• ICT Security professional certifications like CC, ISO 27001 LI, CISSP, CISA, CEH, etc. Will be an added advantage.

• Administer and maintain overall enterprise PAM solution architecture, including Vaults, PSM, CPM, and PVWA.
• Manage the lifecycle of privileged accounts in the PAM solution: onboarding, offboarding, rotation, and monitoring.
• Develop and enforce policies for privileged access, including session recording, just-in-time access, and credential rotation.
• Enforce and review safe access policies for privileged accounts, including dual control/dual approval of workflows.
• Monitor and audit privileged access sessions and alerts and coordinate investigations for anomalies and violations.
• Troubleshoot technical issues with the PAM platform and its integrations.
• Manage and secure remote access sessions for privileged users, ensuring compliance with policy.
• Provide operational support for PAM users and services.
• Assist in incident response and forensic investigations related to privileged accounts and access breaches.
• Maintain and update documentation, SOPs, and operational procedures for PAM and IAM processes.
• Administer general IAM operations: user provisioning, de-provisioning, access approvals, and workflow management.
• Monitor and enforce segregation of duties (SoD) policies and controls.
• Support internal and external audits, including preparation, evidence collection, and reporting for privileged and general access.
• Recommend and implement improvements to access policies, controls, and PAM/IAM operations.
• Participate in IAM-related projects such as SSO, MFA, and role-based access enhancements.
• Maintain knowledge of best practices for privileged, remote, and enterprise access management.
• Collaborate with Security Operations and IT teams on access-related incidents or policy violations and recommend improvements to access policies and controls.
• Lead information security awareness and training programs (SAT program) to inform and motivate staff on cybersecurity matters.

• Strong problem-solving skills with the ability to respond and resolve issues efficiently.
• Excellent interpersonal and oral communication skills.
• Knowledge of security issues and products, enabling complex issues to be quickly diagnosed and resolved.
• Effective time management and the ability to work independently or coordinate with teams.
• Capability to conduct security awareness training and communicate cybersecurity concepts effectively.

• At least 3 years of hands‑on experience in, Privileged Access Management (PAM) tools, Identity & Access Management (IAM), Active Directory, Azure AD, and related access security technologies.
• Possession of a bachelor’s degree in computer systems/technology/ Cybersecurity or related academic field.
• ICT Security professional certifications like CC, ISO 27001 LI, CISSP, CISA, CEH, etc. Will be an added advantage.