Privilege Access Management (PAM) Manager, Enterprise Identity

Deloitte

$90K — $175K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in Computer Science, Engineering, Information Security, or related discipline.
  • 7+ years of IAM/PAM experience.
  • 3+ years of team leadership and client-facing engagements.
  • Deep understanding of Privileged Access Management, Identity Governance, Zero Trust concepts, Cloud security architecture, and Identity lifecycle management.
  • Hands-on experience with PAM solutions like CyberArk, Delinea, BeyondTrust, and HashiCorp Vault.
  • Experience in developing target-state architectures and transformation roadmaps.
  • Strong executive communication and presentation skills.

Responsibilities

  • Lead client engagements focused on PAM strategy, implementation, and transformation.
  • Act as primary engagement lead for project delivery and stakeholder management.
  • Facilitate executive workshops to define PAM roadmaps and governance structures.
  • Manage project scope, budgets, timelines, risks, and resource planning.
  • Conduct current-state assessments and maturity evaluations.
  • Design and oversee implementation of various privileged access management solutions.
  • Develop executive presentations, business cases, and strategic recommendations.

Benefits

  • $4,000 per year for mental health support benefits.
  • $1,300 flexible benefit spending account.
  • Firm-wide closures known as 'Deloitte Days'.
  • Dedicated days off for learning and development.
  • Flexible work arrangements and a hybrid work structure.
Full Job Description
7/3/26

Apply now
  • Start applying with LinkedIn
  • Apply Now


  • Start

  • Please wait...


Job Type: Permanent Work Model: Hybrid Reference code: 131502 Primary Location: Toronto, ON All Available Locations: Toronto, ON; Burlington, ON; Calgary, AB; Edmonton, AB; Fredericton, NB; Halifax, NS; Kitchener, ON; Moncton, NB; Ottawa, ON; Regina, SK; Saint John, NB; Saskatoon, SK; St. John's, NL; Vancouver, BC; Victoria, BC; Winnipeg, MB

About the team

Deloitte's Cyber practice helps organizations build resilient identity and access management programs that reduce risk, strengthen compliance, and enable digital transformation. As a Manager within our Identity & Access Management (IAM) practice, you will lead complex Privileged Access Management (PAM) engagements, advise executive stakeholders, and help clients modernize and secure privileged access across cloud and on-premises environments.

You will work with leading PAM technologies including CyberArk, Hashicorp, Delinea, BeyondTrust, Microsoft Entra, and cloud-native privileged access solutions while supporting enterprise-wide identity transformations. As part of Deloitte's collaborative IAM practice, you will work alongside industry-leading practitioners and clients to solve complex identity and security challenges, contribute to the growth of our IAM capabilities, mentor and develop team members, and help organizations establish modern, identity-centric security programs that drive meaningful business outcomes

What will your typical day look like?

What your typical day looks like as a PAM Manager, you will:
  • Lead client engagements focused on PAM strategy, implementation, and transformation.
  • Act as the primary engagement lead for project delivery, stakeholder management, and overall client satisfaction.
  • Facilitate executive workshops to define PAM roadmaps, operating models, governance structures, and target-state architectures.
  • Manage project scope, budgets, timelines, risks, dependencies, and resource planning.
  • Lead current-state assessments and maturity evaluations across people, process, and technology domains.
  • Design and oversee implementation of:
  • Privileged Account Management
  • Privileged Session Management
  • Endpoint Privilege Management
  • Secrets Management
  • SSH Key Management
  • Cloud Privileged Access Controls
  • Guide clients through implementation of PAM solutions such as Idira (CyberArk), HashiCorp, Azure PIM and/or others.
  • Develop executive presentations, business cases, roadmaps, and strategic recommendations.
  • Support business development activities including proposals, RFP responses, demonstrations, and client pursuits.
  • Contribute to Deloitte's IAM thought leadership and alliance relationship
  • Lead internal training initiatives on emerging PAM trends.


Enough about us, let's talk about you

Must-have (required) Skills
  • Bachelor's degree in Computer Science, Engineering, Information Security, or related discipline.
  • 7+ years of IAM/PAM experience.
  • 3+ years leading teams and client-facing engagements.
  • Deep understanding of:
  • Privileged Access Management
  • Identity Governance
  • Zero Trust concepts
  • Cloud security architecture
  • Identity lifecycle management
  • Hands-on experience implementing one or more of:
  • Idira (CyberArk) - On-premise and SaaS
  • Delinea
  • BeyondTrust
  • HashiCorp Vault
  • Microsoft Entra Privileged Identity Management
  • Experience developing target-state architectures and transformation roadmaps.
  • Strong executive communication and presentation skills.
  • Experience managing project budgets and delivery teams.

Nice-to-have (Preferred) Skills
  • Idira/CyberArk Defender, Sentry, CDE, or Guardian certifications.
  • CISSP, CISM, or CCSP.
  • Experience with cloud platforms:
  • Azure
  • AWS
  • GCP
  • Experience integrating PAM with:
  • ServiceNow
  • SailPoint
  • Saviynt
  • Microsoft Entra ID
  • Consulting experience with a professional services organization.


Total Rewards

The salary range for this position is $90,000 - $175,000, and individuals may be eligible to participate in our bonus program. Deloitte is fair and competitive when it comes to the salaries of our people. We regularly benchmark across a variety of positions, industries, sectors, targets, and levels. Our approach is grounded on recognizing people's unique strengths and contributions and rewarding the value that they deliver.

Our Total Rewards Package extends well beyond traditional compensation and benefit programs and is designed to recognize employee contributions, encourage personal wellness, and support firm growth. Along with a competitive base salary and variable pay opportunities, we offer a wide array of initiatives that differentiate us as a people-first organization. On top of our regular paid vacation days, some examples include: $4,000 per year for mental health support benefits, a $1,300 flexible benefit spending account, firm-wide closures known as "Deloitte Days", dedicated days of for learning (known as Development and Innovation Days), flexible work arrangements and a hybrid work structure.

Similar Jobs

More Jobs at Deloitte

More Information Technology Jobs

Find similar Privilege Access Management (PAM) Manager, Enterprise Identity jobs: