At a Glance
- Tasks: Lead the design and automation of privileged access management solutions.
- Company: AVEVA, a trusted software provider for leading industrial companies.
- Benefits: Flexible benefits, 28 days annual leave, private medical insurance, and education assistance.
- Other info: Inclusive culture with opportunities for continuous learning and career growth.
- Why this job: Join a dynamic team and make a real impact in cybersecurity.
- Qualifications: Hands-on experience in PAM and SailPoint, strong automation skills required.
AVEVA is creating software trusted by over 90% of leading industrial companies.
AVEVA is seeking Privileged Access Management (PAM) Engineers to lead the delivery of highly automated, enterprise‑grade privileged access controls as part of our IDAM function. This is a senior, hands‑on engineering role with significant responsibility and influence. You will design, build, and operate PAM capabilities with automation as a core principle, integrating SailPoint as the enterprise IGA platform and supporting the current and future adoption of CyberArk (or equivalent). You will act as a senior technical authority, defining standards, patterns, and automation approaches while working closely with Security Architecture, Infrastructure, and Audit teams.
Key responsibilities
- Lead the automation‑first design and engineering of PAM solutions
- Play a senior role in CyberArk (or similar) implementation and expansion
- Engineer fully automated onboarding for:
- Privileged user accounts
- Service and application accounts
- Credentials, secrets, and keys
- Integrate PAM with SailPoint for automated governance, lifecycle, and access reviews
- Define PAM standards, onboarding patterns, and automation frameworks
- Automate privileged access requests, approvals, and provisioning via ServiceNow
- Build automated PAM and SailPoint reporting for audits and compliance
- Reduce manual PAM operations through scripting and orchestration
- Secure privileged access across:
- Active Directory environments
- Windows and Linux platforms
- Azure and cloud services
- Applications and DevOps pipelines
- Act as senior escalation point for PAM‑related incidents
- Partner with Security Architecture and Audit on control design and evidence automation
- Produce high‑quality architecture diagrams, runbooks, and engineering documentation
- Apply AI‑assisted tooling to enhance troubleshooting and operational insight
Essential requirements
- Significant, hands‑on experience in Privileged Access Management
- Hands‑on SailPoint experience is mandatory
- Strong experience with CyberArk (PAS, PSM, EPM) or equivalent tools
- Proven ability to engineer and automate PAM at scale
- Strong understanding of privileged access risks and threat vectors
- Advanced experience with Active Directory and hybrid identity environments
- Strong automation and scripting skills (PowerShell, Python, APIs)
- Experience supporting audits using automated evidence and reporting
- Ability to operate as a senior engineer, providing technical leadership
Desired skills
- Experience using ServiceNow and/or Jira to automate privileged access workflows
- Broader knowledge of IAM, IGA, Zero Trust, or identity security domains
- Experience working with DevOps teams, including securing pipelines and secrets
- Bachelor’s degree in Computer Science, Engineering, Mathematics, or related discipline; or equivalent experience
- Relevant certifications (e.g. CyberArk, SailPoint, Microsoft Security, Cloud Security)
- Strong communication and stakeholder management skills
- Customer‑focused mindset, balancing security with business usability
- Demonstrated growth mindset, passionate about continuous learning
- Experience mentoring or guiding other engineers
UK Benefits include: Flexible benefits fund, emergency leave days, adoption leave, 28 days annual leave (plus bank holidays), pension, life cover, private medical insurance, parental leave, education assistance program.
AVEVA requires all successful applicants to undergo and pass a drug screening and comprehensive background check before they start employment. Background checks will be conducted in accordance with local laws and may, subject to those laws, include proof of educational attainment, employment history verification, proof of work authorization, criminal records, identity verification, credit check. Certain positions dealing with sensitive and/or third‑party personal data may involve additional background check criteria.
AVEVA is an Equal Opportunity Employer. We are committed to being an exemplary employer with an inclusive culture, developing a workplace environment where all our employees are treated with dignity and respect. We value diversity and the expertise that people from different backgrounds bring to our business. AVEVA provides reasonable accommodation to applicants with disabilities where appropriate. If you need reasonable accommodation for any part of the application and hiring process, please notify your recruiter. Determinations on requests for reasonable accommodation will be made on a case‑by‑case basis.
IDAM PAM Engineer in Cambridge employer: Dormont Manufacturing Co
AVEVA is an exceptional employer, offering a dynamic work environment in the heart of the UK, with a strong focus on innovation and automation in Privileged Access Management. Employees benefit from a comprehensive package that includes flexible benefits, generous leave policies, and opportunities for professional growth through education assistance. The inclusive culture fosters collaboration and respect, making AVEVA a rewarding place to build a meaningful career.
StudySmarter Expert Advice🤫
We think this is how you could land IDAM PAM Engineer in Cambridge
✨Get Involved in the Cybersecurity Community
Diving into the cybersecurity community is key for landing that full-time gig. Join forums like Reddit's r/cybersecurity or attend local meetups to connect with industry veterans and other job seekers. Networking is everything in this field—don’t just be a passive lurker!
✨Show Off Your Skills with Capture the Flag Competitions
Participate in Capture the Flag (CTF) competitions; these are not just a fun way to boost your skills but also a chance to showcase your talent to potential employers. Many companies, including Dormont Manufacturing Co, love seeing candidates who actively engage in these challenges.
✨Tailor Your Online Presence
Make sure your LinkedIn and any professional profiles reflect your cybersecurity expertise. Share your projects, whether they’re personal or from a previous role, to catch the eye of hiring managers. This is how they’ll find your passion and commitment to the field!
✨Apply Directly Through Dormont Manufacturing Co
Don’t forget to head straight to our website and check out any openings for cybersecurity roles at Dormont Manufacturing Co. Applying directly can sometimes give you an edge, especially if you can mention that you've been following our work or engaging in the community.
We think you need these skills to ace IDAM PAM Engineer in Cambridge
Some tips for your application 🫡
Show off your technical skills:In cybersecurity, it's crucial to highlight your technical prowess. Make sure your CV showcases specific skills like network security, penetration testing, or threat analysis. If you have relevant certifications (like CEH or CISSP), pop those on the front page to grab attention!
Tailor your portfolio for the role:Even for a full-time role, a portfolio can set you apart. If you've worked on any cybersecurity projects—be it CTF challenges, security assessments, or research papers—include these in your application. This demonstrates not just your skills, but also your hands-on experience!
Use real-world examples:When writing your cover letter, don’t just stick to your qualifications. Share real-world examples of how you’ve tackled security issues or vulnerabilities. This gives the hiring team at Dormont Manufacturing Co insight into your practical problem-solving abilities and makes your application memorable.
Demonstrate your passion for cybersecurity:Cybersecurity is an ever-evolving field, so show us that you’re always learning! Mention any recent courses, webinars, or industry events you’ve attended. This not only exhibits your enthusiasm but also signals to Dormont Manufacturing Co that you’re committed to staying ahead in the game.
How to prepare for a job interview at Dormont Manufacturing Co
✨Sharpen Your Technical Skills
For a role in cybersecurity, it’s essential to be up-to-date with the latest tools and techniques. Brush up on your knowledge of firewalls, intrusion detection systems, and vulnerability assessment tools. Be ready to discuss specific scenarios where you’ve applied these skills, as hands-on experience can really set us apart in interviews.
✨Prepare for Scenario-Based Questions
Expect the interviewers at Dormont Manufacturing Co to throw in some hypothetical situations to see how you’d handle them. Think about common security breaches or incidents and be prepared to explain how you would respond. This not only shows your problem-solving skills but also your understanding of real-world cybersecurity challenges.
✨Highlight Your Certifications
Certifications like CompTIA Security+, CISSP, or CEH can give you a significant edge in a full-time role in cybersecurity. Make sure to mention these during your interview and be prepared to discuss what you learned through those certifications and how they relate to the position at Dormont Manufacturing Co.
✨Show Your Passion for Cybersecurity
Since you’re going for a full-time gig, showing genuine enthusiasm for the field can make all the difference. Share any personal projects, blogs, or communities you’re part of that relate to cybersecurity. This not only showcases your passion but also your commitment to staying engaged in this ever-evolving field.