ADP is hiring a Director, Privileged Access ManagementLocations: Roseland NJ, Alpharetta GA, Pasadena CA, Orlando FL, Miami FL, Norfolk VAIn this role, you will oversee the access, implementation, security, and governance of accounts and privileged accounts. This role will focus on operational excellence and risk mitigation through the deployment and management of PAM technologies such as CyberArk, Delinea, and Beyond Trust. The Leader will secure critical infrastructure and data by enforcing modern access principles like least privilege, just-in-time provisioning, and zero standing privilege, while also ensuring secure credential storage, session monitoring, and compliance alignment. As part of ongoing improvement efforts, the team leader will also contribute to the evaluation and potential optimization of the access management toolset as a supporting responsibility.
Key Responsibilities:Privileged Access Governance & Operations:- Lead day-to-day operations and governance of accounts including privileged accounts across the organization.
- Define and enforce access management policies based on least privilege, zero trust, and zero standing access principles.
- Manage onboarding, rotation, vaulting, and monitoring of admin, service, application, and other accounts.
Technology Implementation & Oversight:- Administer tools including CyberArk and Beyond Trust to protect sensitive systems and endpoints.
- Oversee automated credential rotation and discovery of privileged accounts.
- Implement just-in-time access workflows, break-glass processes, and privileged escalation controls.
- Ensure privileged session recording and centralized logging.
Access Security & Threat Protection:- Secure access to high-risk and business-critical systems, including cloud console access and remote infrastructure.
- Lead centralized management of secrets (API keys, encryption keys, credentials) used across applications and DevSecOps environments.
- Collaborate with the SOC and Cybersecurity teams on threat detection and incident response related to access.
Stakeholder Collaboration:- Work closely with Infrastructure, Cloud Ops, DevSecOps, DBAs, IT Admins, and Application Owners to align privileged access controls with operational needs.
- Coordinate with audit and compliance teams to ensure regulatory alignment.
- Manage engagement with PAM vendors and support teams.
Support for PAM Tool Optimization:- As part of continuous improvement, support the assessment and possible optimization of existing PAM solutions (CyberArk, Delinea, Beyond Trust), identifying overlaps or improvement areas where appropriate.
Support the public Cloud transformation:- Define a vision, strategy & migration plan for on prem toolset to the public Cloud vendors
- Handle PAM for on prem & public Cloud Assets
- Define, implement, and operate the use and impact of GenAI within IAM landscape along with use of GenAI in the ecosystem.
Like what you see?
Apply now!Learn more about ADP at jobs.adp.com.WHAT YOU'LL DO: Here's what you can expect on a typical day: - You'll start each day with a scrum, working in a team to understand responsibilities, identify issues, and communicate coding priorities while choosing user stories to complete. You must know Agile well.
- Your seven or more years of team leadership have delivered amazing results, and you pride yourself on developing the people who work for you, as well as providing an inclusive team environment where they all can thrive. If asked, they would follow you anywhere and enthusiastically credit you with helping to grow their careers.
- Working in two-week sprints, you must keep up with timelines and coding standards. You'll be looking ahead to the next coding criteria to build technically sound and functional tools.
- Continuous Learning. An eagerness to learn will help you keep up with ever-changing technologies and maintain the ability to create the best tools for our clients. You are comfortable and thrive in an autonomous role since that will be essential for your success.
- You'll work with business leadership and project management to understand priorities and create automation accordingly.
- You will present and defend your team's approach to leadership. There is no typical day as you partner and work with people across the development organization to turn ideas into reality.
- You have 10+ years of experience in relevant skills gained and developed in the same or similar role.
TO SUCCEED IN THIS ROLE:- Bachelor's degree in computer science, Cybersecurity, or a related field; Master's degree preferred, or equivalent
- 10+ years of experience in IT security, including 3+ years with a focus on PAM.
- 5+ years' experience in managing technical teams.
- Experience with DevSecOps toolchains and integrating PAM with CI/CD workflows.
- Understanding of compliance frameworks (e.g., ISO 27001, NIST, SOX, GDPR).
- Hands-on expertise with at least one major PAM platform (CyberArk, Delinea, Beyond Trust), preferably across multiple environments.
- Working knowledge and experience of privileged account lifecycle, secrets management, session recording, and access provisioning.
- Familiarity with hybrid cloud infrastructure (AWS, Azure, GCP) and modern access controls.
- Excellent communication skills and experience interacting with cross-functional teams, including HR, legal, audit, and business leaders.
- Able to communicate effectively with both technical teams and senior leadership
- Experience managing or mentoring a technical team in a leadership or supervisory role.
- Program & Change Management
- Strategic thinker with a hands-on technical approach
- Strong leadership and mentoring capabilities
- Passionate about automation, security, and operational excellence
- Self-driven, organized, and comfortable operating in a hybrid, fast-paced environment
- An analytical and security-driven mindset with an eye for operational detail.
Preferred Certifications:- Microsoft Certified: Identity and Access Administrator / Azure Solutions Architect
- Certified Information Systems Security Professional (CISSP)
- Certified Information Security Manager (CISM)
- Certified Identity and Access Manager (CIAM)
- Certified Cloud Security Professional (CCSP)
- AWS or Azure Security Certification
- Certified DevSecOps Professional or equivalent
- CyberArk Defender/Sentry, Delinea, Beyond Trust or equivalent
#LI-CZ1
#LI-Hybrid
