We are seeking a BeyondTrust PAM Engineer with strong hands‑on expertise in BeyondTrust Password Safe (PWS), Privileged Remote Access (PRA), and HashiCorp Vault. This role will design, implement, and support enterprise PAM solutions to safeguard critical systems and sensitive data.ResponsibilitiesAdminister BeyondTrust Password Safe: managed accounts, password rotation, discovery scans, credential workflows, APIs, auditing.Manage BeyondTrust PRA: site configuration, credential injection, tunneling (RDP, SSH, VNC, HTTPS), session recording, clustering, and integrations with ServiceNow/Jira.Administer HashiCorp Vault: secrets engines, dynamic secrets, encryption services, namespaces, policies, HA/DR, storage backends, seal/unseal procedures.Develop automation scripts in PowerShell & Python for credential management, integrations, reporting, and compliance.Ensure compliance with SOX, PCI-DSS, HIPAA, ISO 27001, NIST standards.Implement least privilege, zero‑trust models, and proactive security monitoring.Required Skills2+ years hands‑on with BeyondTrust Password Safe and PRA.2+ years with HashiCorp Vault (secrets engines, policies, dynamic secrets).Strong scripting skills: PowerShell, Python, REST APIs, Git.Experience with Active Directory, databases, Unix/Linux, cloud platforms.Knowledge of clustering, HA, DR, and SIEM integrations.Preferred SkillsCertifications: Cisco CCNP/CCIE, FortiGate FCNSA, F5 CTS‑LTM/GTM.Familiarity with Kubernetes, MFA solutions (Duo, Okta, RSA), and cloud IAM (Azure, AWS, GCP).Experience with Terraform, CI/CD pipelines, and container security.Visa: USC/GC/EADInterested candidates, please reach out at: domprakash@asofttek.com
