About this role
About Us
HighRadius, a renowned provider of cloud-based Autonomous Software for the Office of the CFO, has transformed critical financial processes for over 800+ leading companies worldwide. Trusted by prestigious organizations like 3M, Unilever, Anheuser-Busch InBev, Sanofi, Kellogg Company, Danone, Hershey's, and many others, HighRadius optimizes order-to-cash, treasury, and record-to-report processes, earning us back-to-back recognition in Gartner's Magic Quadrant and a prestigious spot in Forbes Cloud 100 List for three consecutive years.
With a remarkable valuation of $3.1B and an impressive annual recurring revenue exceeding $100M, we experience a robust year-over-year growth of 24%. With a global presence spanning 8+ locations and a recent addition in Poland, we're in the pre-IPO stage, poised for rapid growth. We invite passionate and diverse individuals to join us on this exciting path to becoming a publicly traded company and shape our promising future.
Job Summary:
We are seeking an experienced and highly ski led Principal Cybersecurity Engineer to serve as the Subject Matter Expert (SME) and technical lead for our enterprise-wide Privileged Access Management (PAM) program. In this critical role, you will be responsible for the end-to-end lifecycle of our PAM solution, including strategic deployment, architecture, daily operations, and advanced troubleshooting. You will act as the final escalation point for al privileged access issues, lead PAM-related projects, and mentor junior engineers, all while managing key stakeholder relationships to ensure program success.
Key Responsibilities & Business Impact
● PAM Deployment & Strategy:
○ Lead the architecture, design, and deployment of the enterprise PAM solution (CyberArk or BeyondTrust), ensuring scalability, resilience, and alignment with business goals.
○ Develop and maintain the strategic roadmap for privileged access controls, including the integration of IT, Cloud and DevOps environments.
○ Serve as the technical lead and mentor for junior PAM analysts, providing guidance, training, and operational oversight.
● Advanced Operations & Troubleshooting:
○ Act as the final L3 escalation point for al PAM-related incidents, including service-down emergencies, integration failures, credential rotation issues, and break-glass scenarios.
○ Perform deep-dive troubleshooting and root cause analysis for complex system, component, and integration failures.
○ Develop, maintain, and refine PAM operational playbooks and procedures to ensure efficient and effective handling of requests and incidents.
● PAM Governance & Integration:
○ Lead the integration of the PAM platform with other critical security and IT systems, such as SIEM, SOAR, MFA, and ITSM.
○ Manage the ful lifecycle of privileged credentials, including discovery, onboarding, vaulting, automated rotation, and secure session management.
○ Develop and automate PAM reports to support internal/external audits and demonstrate compliance with (SOX, PCI, ISO 27001, etc.).
● Technology & Process Optimization:
○ Continuously optimize the PAM platform for performance, security, and user experience.
○ Develop automation (e.g., via PowerShel, Python, or REST APIs) for onboarding, provisioning, and repetitive operational tasks to improve efficiency.
○ Work with application and infrastructure teams to identify and onboard new privileged accounts, platforms, and applications.
● Stakeholder Management & Communication:
○ Translate complex PAM concepts, technical risks, and project updates into clear, concise reports and presentations for technical teams, business leaders, and executive management.
○ Serve as the primary technical liaison for internal audit, compliance teams, application owners, and IT infrastructure leaders to drive adoption and enforce PAM best practices.
○ Guide and mentor junior engineers, providing technical training and support for their professional development.
Required Qualifications
Experience:
● 6-8+ years of progressive experience in cybersecurity, with a focus on Privileged Access Management (PAM).
● 2+ years of direct, hands-on experience in a senior or lead role deploying, managing, and troubleshooting enterprise-grade PAM solutions.
● Proven experience leading complex technical projects from design through to implementation and operations.
Technical Expertise:
● Expert-level, hands-on proficiency with at least one enterprise PAM platform: CyberArk (e.g., Core PAS, EPM, CCP) or BeyondTrust (e.g., Password Safe, Privileged Remote Access).
● Deep understanding of privileged credential management, session monitoring, endpoint privilege management, and privileged threat analytics.
● Strong proficiency with scripting languages (e.g., PowerShel, Python) for automation and API integration.
● Deep knowledge of Active Directory, Windows/Linux server administration, databases, and network device access control.
● Demonstrated experience with PAM in cloud environments (AWS, Azure, or GCP), including managing access for service accounts, CI/CD pipelines, and cloud consoles.
Soft Skills & Education:
● Bachelor's degree in Cybersecurity, Computer Science, or a related field.
● Ability to remain calm and make decisive, risk-based decisions during high-pressure situations.
● Excelent analytical, problem-solving, and critical-thinking ski ls.
● Superior communication and stakeholder management ski ls, with a proven ability to articulate complex technical topics to both technical and non-technical audiences.
Certifications (Highly Desired):
● One or more vendor-specific PAM certifications (e.g., CyberArk CDE - Sentry/Defender, BeyondTrust Certified Professional).
● One or more of the folowing certifications are strongly preferred: CISSP, CISM, CCSP, or other relevant IAM/cloud certifications.