Privileged Access Management Technical Support Engineer

Responsibilities

• Platform Operations & 24/7 Reliability
• Support and maintain PAM platforms (CyberArk EPV and Conjur).
• Provide 24×7 operational support through on-call rotation, adhering to SLAs/SLOs for uptime, response, and recovery.
• Perform daily platform health checks, telemetry monitoring, and troubleshoot issues across PAM platforms.
• Change, Patch & Vulnerability Management
• Execute patching, upgrades, and hotfix deployments with full change lifecycle management including CAB approval, testing, and rollback validation.
• Perform vulnerability remediation (scan, prioritise, fix, validate) for PAM platforms.
• Implement secure configuration baselines and hardening standards across PAM platforms.
• Identify and support platform modernization and reduction of technical debt.
• High Availability, Resilience & Disaster Recovery
• Manage HA/DR architecture, replication monitoring, failover mechanisms, and backup/restore processes.
• Conduct DR drills, failover testing, and ensure platform readiness for disaster scenarios.
• Integration & Platform Ecosystem Engineering
• Integrate PAM tools with enterprise systems including OS, databases, middleware, SIEM, IAM, and cloud services.
• Deploy and maintain CPM/PSM connectors, plug-ins, and platform definitions.
• Collaborate with PID Admin for lifecycle onboarding/off-boarding and privilege-related incidents.
• Secrets Management & DevOps Integration
• Manage Conjur clusters, authentication methods, policy structures, and secrets hierarchy.
• Enable secure machine credential ingestion and application secrets management across pipelines.
• Incident Response Support, Compliance Evidence & Documentation
• Provide platform logs, evidence, and analysis during PAM-related incidents and investigations.
• Execute PAM incident-response playbooks and support cybersecurity teams during threat events.
• Maintain comprehensive operational documentation including procedures, runbooks, architecture diagrams, DR plans, and post-incident reports.

Requirements

• Diploma or Degree in IT, Cybersecurity, Computer Science, or related fields.
• Minimum 5 years' experience in PAM technical support, cybersecurity or platform support.
• Technical Knowledge
• 3+ years hands‑on with CyberArk EPV and/or Conjur secrets manager
• Deep knowledge of Windows Server, IIS, Linux, networking, and cloud platforms.
• Strong scripting capability in PowerShell and Python; familiarity with CI/CD pipelines.
• Experience with monitoring/observability, SIEM integration, and performance tuning.
• Multi‑tasking and prioritisation across operational demands
• Independent, resourceful, and able to operate in a regulated environment.
• Strong stakeholder management and collaboration
• Certifications (Preferred)
• CyberArk Sentry, Guardian
• CISSP/CCSP or equivalent.

Additional Information

Job Summary We are looking for several Privileged Access Management (PAM) engineers. You will be responsible for the secure, resilient, and optimised operation of PAM platforms across production and non-production environments. Your scope includes platform stability, 24×7 operational support, patching, vulnerability remediation, automation, integrations, HA/DR, and providing incident-response support. You will work closely with Engineering, PID Admin, Infrastructure, Cloud, DevOps, and Cybersecurity teams to ensure strong PAM operational excellence across the Group.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at OVERSEA-CHINESE BANKING CORPORATION LIMITED? Share your experience