jobs Logo
PeoplePilot logo

Privileged Access Engineer - AI Capabilities (PAM)

PeoplePilotabout 19 hours ago
Montreal, Quebec, Canada
Senior Level
Full-Time

About the role

Role Overview The Privileged Access Engineer (PAM) with AI Capabilities will be responsible for securing privileged access across enterprise systems by implementing advanced PAM solutions and leveraging Artificial Intelligence (AI) and Machine Learning (ML) to enhance threat detection, automation, and decision-making. This role combines cybersecurity engineering with AI-driven analytics to proactively identify risks, automate privileged access controls, and support adaptive security frameworks.

Key Responsibilities PAM Engineering & Implementation Design, implement, and manage PAM solutions such as CyberArk, BeyondTrust, Delinea, and HashiCorp Vault. Configure privileged account onboarding and lifecycle management. Manage password vaulting, password rotation, and credential management. Configure and support Privileged Session Management (PSM). Implement Just-In-Time (JIT) and Just-Enough-Access (JEA) access models. AI-Driven Security & Automation Develop and integrate AI/ML models to detect anomalous privileged access behavior, identify insider threats, and predict access misuse. Use AI for behavioral analytics, including UEBA. Support risk-based authentication and access decisions. Implement intelligent automation for privileged account onboarding, offboarding, access approvals, and policy enforcement. Advanced Monitoring & Threat Detection Leverage AI-enabled SIEM tools such as Splunk and Microsoft Sentinel. Monitor privileged sessions in real time and support automated alert prioritization. Implement session recording and playback. Tune AI-driven anomaly detection and alerts. Support incident response and forensic investigations. Integration & Data Engineering Integrate PAM solutions with IAM systems such as Entra ID, Okta, and SailPoint. Integrate with security tools including SIEM, SOAR, and EDR/XDR. Support integrations with cloud platforms: AWS, Azure, and GCP. Work with APIs, REST services, and JSON. Build and maintain data pipelines for security analytics platforms and AI-ready datasets. Governance, Risk & Compliance Enforce least privilege access and Zero Trust security principles. Support compliance requirements including SOX, GDPR, PCI-DSS, and ISO 27001. Generate AI-assisted compliance reports and audit insights. Automation & DevSecOps Develop scripts and automation workflows using Python, PowerShell, and Bash. Integrate PAM into CI/CD pipelines as part of DevSecOps practices. Implement AI-assisted remediation workflows using SOAR tools.

Requirements 7+ years of relevant experience in cybersecurity, Identity and Access Management (IAM), or Privileged Access Management (PAM) engineering. Strong experience in Privileged Access Management (PAM) engineering. Hands-on knowledge of PAM tools such as CyberArk, BeyondTrust, Delinea, or HashiCorp Vault. Experience with privileged account onboarding, lifecycle management, password vaulting, password rotation, and credential management. Knowledge of Privileged Session Management (PSM). Understanding of Just-In-Time (JIT) and Just-Enough-Access (JEA) access models. Good understanding of AI/ML use cases in cybersecurity, especially anomaly detection and threat behavior analysis. Experience with behavioral analytics or UEBA concepts. Knowledge of SIEM tools such as Splunk or Microsoft Sentinel. Experience integrating PAM with IAM platforms such as Entra ID, Okta, or SailPoint. Familiarity with security tools such as SIEM, SOAR, EDR, or XDR. Cloud platform exposure across AWS, Azure, or GCP. Ability to work with APIs, REST services, JSON, logs, and security data pipelines. Strong understanding of least privilege access and Zero Trust principles. Knowledge of compliance frameworks such as SOX, GDPR, PCI-DSS, and ISO 27001. Scripting knowledge using Python, PowerShell, or Bash. Understanding of DevSecOps and CI/CD security integration.

Preferred Skills Experience implementing AI-driven security automation. Hands-on exposure to insider threat detection, privileged access anomaly detection, and risk-based authentication. Experience building AI-ready datasets from access logs, security logs, and privileged activity data. Experience with SOAR-based remediation workflows. Strong working knowledge of cloud security and identity integrations. Experience supporting incident response or forensic investigations. Ability to work with SOC teams, IAM architects, cloud engineers, and AI/data science teams. Interest or experience in Intelligent Identity Security and Autonomous Access Management. Ability to evaluate emerging AI-driven security tools and recommend improvements.

About PeoplePilot

Data Infrastructure and Analytics

Similar Jobs