Privileged Access Engineer (PAM) – AI Security, IAM & Automation
Astra North Infoteck Inc.
Détails du poste
- Lieu de travail : Montreal
- Type de poste : Permanent à temps plein
Privileged Access Engineer – AI Security, IAM & Automation
Description du poste
Responsible for securing privileged access across enterprise systems by implementing advanced Privileged Access Management (PAM) solutions while leveraging Artificial Intelligence (AI) and Machine Learning (ML) to enhance threat detection, automation, and decision-making.
Combine cybersecurity engineering with AI-driven analytics to identify risks, automate privileged access controls, and enable adaptive security frameworks.
Responsabilités clés
PAM Engineering & Implementation
Design, implement, and manage PAM solutions, including:
- CyberArk
- BeyondTrust
- Delinea
- HashiCorp Vault
Configure:
- Privileged account onboarding and lifecycle management
- Password vaulting, rotation, and credential management
- Privileged Session Management (PSM)
Implement:
- Just-In-Time (JIT) access models
- Just-Enough-Access (JEA) models
AI-Driven Security & Automation
Develop and integrate AI/ML models to:
- Detect anomalous privileged access behavior
- Identify insider threats and suspicious activity
- Predict and prevent access misuse
Use AI for:
- Behavioral analytics (UEBA – User and Entity Behavior Analytics)
- Risk-based authentication and access decisions
Implement intelligent automation for:
- Privileged account onboarding and offboarding
- Access approvals
- Policy enforcement
Advanced Monitoring & Threat Detection
Leverage AI-enabled SIEM tools, including:
- Splunk
- Microsoft Sentinel
Perform:
- Real-time monitoring of privileged sessions
- Automated alert prioritization
Implement:
- Session recording and playback
- AI-driven anomaly detection
- Alert tuning
Support incident response and forensic investigations.
Integration & Data Engineering
Integrate PAM solutions with:
- IAM systems:
- Entra ID
- Okta
- SailPoint
- Security tools:
- SIEM
- SOAR
- EDR/XDR
- Cloud platforms:
- AWS
- Azure
- GCP
Work with:
- APIs
- REST services
- JSON
Develop data pipelines for security analytics platforms.
Build AI-ready datasets from logs and privileged access activity.
Governance, Risk & Compliance
Enforce:
- Least privilege access
- Zero Trust principles
Support compliance requirements, including:
- SOX
- GDPR
- PCI-DSS
- ISO 27001
Generate AI-assisted compliance reports and audit insights.
Contribute to security policy definition and governance frameworks.
Automation & DevSecOps
Develop scripts and automation workflows using:
- Python
- PowerShell
- Bash
Integrate PAM solutions into CI/CD pipelines and DevSecOps processes.
Implement AI-assisted remediation workflows using SOAR tools.
Collaboration & Innovation
Collaborate with:
- Security Operations Center (SOC) teams
- Data Science and AI teams
- IAM Architects
- Cloud Engineers
- Evaluate emerging AI-driven security tools.
- Drive innovation in Intelligent Identity Security and Autonomous Access Management.