Privileged Access Engineer (PAM) – AI Security, IAM & Automation
Astra North Infoteck Inc.
Montreal
Compétences recherchées — Connectez-vous et téléversez votre CV pour comparer avec votre profil
Détails du poste
- Lieu de travail : Montreal
- Type de poste : Permanent à temps plein
Description du poste
Privileged Access Engineer – AI Security, IAM & Automation
Présentation du rôle
- Responsible for securing privileged access across enterprise systems by implementing advanced Privileged Access Management (PAM) solutions while leveraging Artificial Intelligence (AI) and Machine Learning (ML) to enhance threat detection, automation, and decision-making.
- Combine cybersecurity engineering with AI-driven analytics to identify risks, automate privileged access controls, and enable adaptive security frameworks.
Responsabilités principales
Ingénierie PAM & mise en œuvre
- Design, implement, and manage PAM solutions, including:
- CyberArk
- BeyondTrust
- Delinea
- HashiCorp Vault
- Configure:
- Privileged account onboarding and lifecycle management
- Password vaulting, rotation, and credential management
- Privileged Session Management (PSM)
- Implement:
- Just-In-Time (JIT) access models
- Just-Enough-Access (JEA) models
Sécurité & automatisation pilotées par l’IA
- Develop and integrate AI/ML models to:
- Detect anomalous privileged access behavior
- Identify insider threats and suspicious activity
- Predict and prevent access misuse
- Use AI for:
- Behavioral analytics (UEBA – User and Entity Behavior Analytics)
- Risk-based authentication and access decisions
- Implement intelligent automation for:
- Privileged account onboarding and offboarding
- Access approvals
- Policy enforcement
Supervision avancée & détection des menaces
- Leverage AI-enabled SIEM tools, including:
- Splunk
- Microsoft Sentinel
- Perform:
- Real-time monitoring of privileged sessions
- Automated alert prioritization
- Implement:
- Session recording and playback
- AI-driven anomaly detection
- Alert tuning
- Support incident response and forensic investigations.
Intégration & ingénierie des données
- Integrate PAM solutions with:
- IAM systems:
- Entra ID
- Okta
- SailPoint
- Security tools:
- SIEM
- SOAR
- EDR/XDR
- Cloud platforms:
- AWS
- Azure
- GCP
- IAM systems:
- Work with:
- APIs
- REST services
- JSON
- Develop data pipelines for security analytics platforms.
- Build AI-ready datasets from logs and privileged access activity.
Gouvernance, risque & conformité
- Enforce:
- Least privilege access
- Zero Trust principles
- Support compliance requirements, including:
- SOX
- GDPR
- PCI-DSS
- ISO 27001
- Generate AI-assisted compliance reports and audit insights.
- Contribute to security policy definition and governance frameworks.
Automatisation & DevSecOps
- Develop scripts and automation workflows using:
- Python
- PowerShell
- Bash
- Integrate PAM solutions into CI/CD pipelines and DevSecOps processes.
- Implement AI-assisted remediation workflows using SOAR tools.
Collaboration & innovation
- Collaborate with:
- Security Operations Center (SOC) teams
- Data Science and AI teams
- IAM Architects
- Cloud Engineers
- Evaluate emerging AI-driven security tools.
- Drive innovation in Intelligent Identity Security and Autonomous Access Management.
Exigences
- Sailpoint