Build the Future with AspenView Technology Partners
At AspenView, we are passionate about transforming the way organizations approach technology. We specialize in creating high-performing, nearshore IT teams to help North American clients innovate faster and more efficiently. As we continue to grow, we’re looking for exceptional people to join our team and help drive impactful change across industries.
Why Join AspenView?
At AspenView, we’re more than a nearshore IT partner—we’re a people-first, purpose-driven company that believes great culture drives great outcomes. We’re passionate about connecting talent and technology to deliver measurable value for clients—and meaningful career paths for our people.
Here’s What You Can Expect
- Competitive base
- Flexible work model: hybrid, remote, or in-office
- Real growth opportunities and leadership visibility
- Inclusive, respectful culture that blends U.S. innovation with Colombian heart
- A company that listens, invests in you, and celebrates wins together
About The Role
AspenView is seeking an experienced Privileged Access Management (PAM) Specialist to design and build a privileged access management capability from the ground up for a strategic enterprise client. With the client’s current PAM maturity effectively at zero, this is a greenfield engagement: you will own PAM discovery, vaulting design, just-in-time (JIT) access workflows, session recording, and the integration of privileged access controls into the broader Identity Governance and Administration (IGA) model.
Working across a complex hybrid estate, you will establish foundational privileged access controls and scale them to protect up to 500 privileged users.
The shift hours for this role are allocated in European timezone.
What You Will Do
Privileged Account Discovery
- Perform privileged account discovery across a hybrid estate, including Active Directory, Windows and Linux servers, and databases.
- Catalog and classify privileged, shared, and external privileged accounts to establish a complete access baseline.
Credential Vaulting & Rotation
- Design and implement secure credential vaulting with automated password rotation.
- Define policies and controls for the full lifecycle management of privileged credentials.
Just-in-Time Access
- Design and implement just-in-time (JIT) privilege elevation workflows to eliminate standing privileged access.
Session Management
- Deploy privileged session proxy and session recording capabilities to support monitoring, audit, and forensic review.
Governance Integration
- Integrate PAM controls with IGA certification and access-review workflows so that privileged access remains governed and compliant.
- Partner with identity governance stakeholders to align PAM with the wider IGA operating model.
Scale & Scope
- Build initially for up to 250 privileged users, scaling to 500, spanning AD and Entra ID administrators, Windows/Linux servers, databases, network and security devices, SAP administrators, ServiceNow administrators, shared privileged accounts, and external privileged users.
What You Bring
Education
- Bachelor’s degree in Computer Science, Information Security, Information Technology, or a related field, or equivalent practical experience.
Experience
- Demonstrated experience performing privileged account discovery across hybrid environments (Active Directory, Windows/Linux servers, and databases).
- Hands-on experience implementing credential vaulting and automated credential rotation.
- Experience designing and implementing JIT privilege elevation.
- Experience deploying session proxy and session recording solutions.
- Experience integrating PAM controls with IGA certification workflows.
Technical Expertise
- Deep expertise in a leading PAM platform — CyberArk or BeyondTrust. Experience with the PAM module within Saviynt is valuable where an integrated IGA/PAM model is adopted.
- Strong understanding of privileged access across hybrid estates spanning identity, servers, databases, and network/security devices.
Preferred (Good To Have)
- SAP privileged access (Basis / admin accounts).
- Break-glass / firefighter workflow design.
- Non-human identity (NHI) credential governance.
- Microsoft Entra ID Privileged Identity Management (PIM) integration.
Certifications
- Current CyberArk Defender / Sentry OR BeyondTrust certified professional certification is required.
- Saviynt PAM experience is relevant where an integrated IGA/PAM model is selected.
Visa Sponsorship
AspenView does not provide visa sponsorship for this role. Candidates must already be legally authorized to work in their country of residence.
Equal Opportunity Employer
AspenView is proud to be an equal opportunity employer. We believe in creating an environment where all employees feel welcome, valued, and empowered to succeed. We celebrate diversity and strive to build a culture of inclusion where all individuals, regardless of their race, color, gender, gender identity or expression, sexual orientation, disability, age, or any other characteristic, can thrive. We encourage applicants from all walks of life to join our team and make a lasting impact.