Privileged Access Management Lead (PAM)

About the role:
The Privileged Access Management (PAM) Lead will be responsible for overseeing the strategy, implementation, and continuous improvement of the organization’s PAM program. This role ensures that privileged accounts and credentials are securely managed, monitored, and audited to mitigate risks associated with unauthorized access. The PAM Lead will collaborate with IT, security, and business teams to enforce least-privilege principles, automate credential management, and enhance security controls around privileged access.

Key Responsibilities: 

PAM Strategy & Governance

• Define and execute the PAM roadmap in alignment with security policies and regulatory requirements (e.g., SOxNIST, ISO 27001, SOX, GDPR).

• Establish governance frameworks for privileged access, , just-in-time (JIT) access, and approval workflows.

• Develop and enforce policies for privileged account lifecycle management (onboarding, transfers, offboarding).
   

Tool Implementation & Management

• Lead the deployment, configuration, and optimization of PAM solutions (e.g., CyberArk, BeyondTrust, Thycotic, Delinea).

• Integrate PAM tools with IAM systems (e.g., SailPoint, Okta), SIEM (e.g., Splunk, Sentinel), and IT infrastructure.

• Automate credential rotation, session monitoring, and access request/approval processes.
   

Security & Compliance

• Conduct regular audits and access reviews to ensure compliance with internal policies and external regulations.

• Investigate and remediate privileged access risks, including stale accounts, excessive permissions, and shared credentials.

• Respond to security incidents involving privileged accounts and support forensic investigations.
   

Stakeholder Collaboration

• Partner with IT, DevOps, and cloud teams to secure privileged access in hybrid environments (on-prem, cloud, SaaS).

• Educate teams on PAM best practices and provide training for secure credential handling.

• Liaise with internal audit and risk teams to address findings and implement corrective actions.
   

Continuous Improvement

• Monitor industry trends and emerging threats to enhance PAM controls.

• Drive metrics and reporting to measure PAM program effectiveness (e.g., reduction in credential exposure, audit findings).
   

Qualifications & Skills
Experience:

• 5+ years in IAM/PAM, with hands-on expertise in PAM tools (CyberArk, BeyondTrust, etc.).

• Proven track record in designing and managing enterprise PAM programs.

• Familiarity with scripting (PowerShell, Python) for automation.

• Education: Bachelor’s degree in Cybersecurity, IT, or related field (or equivalent experience)

• Certifications (Preferred): CISSP, CISM, CyberArk Defender/Sentinel, or vendor-specific PAM certifications.

• Soft Skills: Strong leadership, communication, and problem-solving abilities.
   

Care to join us. Find out what life at Haleon is really like www.haleon.com/careers/

At Haleon we embrace our diverse workforce by creating an inclusive environment that celebrates our unique perspectives, generates curiosity to create unmatched understanding of each other, and promotes fair and equitable outcomes for everyone. We're striving to create a climate where we celebrate our diversity in all forms by treating each other with respect, listening to different viewpoints, supporting our communities, and creating a workplace where your authentic self belongs and thrives. We believe in an agile working culture for all our roles. If flexibility is important to you, we encourage you to explore with our hiring team what the opportunities are.

As you apply, we will ask you to share some personal information, which is entirely voluntary. We want to have an opportunity to consider a diverse pool of qualified candidates and this information will assist us in meeting that objective and in understanding how well we are doing against our inclusion and diversity ambitions. We would really appreciate it if you could take a few moments to complete it. Rest assured, Hiring Managers do not have access to this information and we will treat your information confidentially.

Haleon is an Equal Opportunity Employer. All qualified applicants will receive equal consideration for employment without regard to race, color, national origin, religion, sex, pregnancy, marital status, sexual orientation, gender identity/expression, age, disability, genetic information, military service, covered/protected veteran status or any other federal, state or local protected class.

Accommodation Requests

If you require a reasonable accommodation or other assistance to apply for a job at Haleon at any stage of the application process, please let your recruiter know by providing them with a description of specific accommodations you are requesting. We’ll provide all reasonable accommodations to support you throughout the recruitment process and treat all information you provide us in confidence.