MatchPoint Solutions is a fast-growing, young, energetic global IT-Engineering services company with clients across the US. We provide technology solutions to various clients like Uber, Robinhood, Netflix, Airbnb, Google, Sephora, and more! More recently, we have expanded to working internationally in Canada, China, Ireland, UK, Brazil, and India. Through our culture of innovation, we inspire, build, and deliver business results, from idea to outcome. We keep our clients on the cutting edge of the latest technologies and provide solutions by using industry-specific best practices and expertise.

We are excited to be continuously expanding our team. If you are interested in this position, please send over your updated resume. We look forward to hearing from you!

Director of Privileged Access Services (PAM)

Location: HYBRID (2 days onsite required - must live 50 miles within one of the Pfizer locations listed below)

• United States - Pennsylvania - Collegeville
• United States - Washington Bothell
• United States - New York - New York City
• United States - Florida - Tampa
• United States - Connecticut - Groton

Duration: 3 Month Contract to Hire

Our customer's Global Information Security (GIS) organization delivers proactive cyber defense for the global enterprise. Their mission is to secure all of Pfizer's digital information assets ranging from our scientific breakthroughs to the manufacturing floor and the patients we serve. We achieve this mission through a combination of world-class talent, top-tier technologies, industry-leading best practices, and the promotion of a cybersecurity ownership culture across the company.

Strong identity and access controls are vital to the security and operational resilience of Pfizer. The Director, of Privileged Access Services is accountable for the strategy, roadmap, technology, and operations of all privileged access technologies across Pfizer Digital. The leader will be responsible for driving innovation that reduces the risk to Pfizer by securing privileged accounts across numerous enterprise environments while also improving the user experience.

The primary responsibility is to strategize and leverage modern privileged access technologies to solve business requirements while future-proofing Pfizer's management of privileged accounts including end-user accounts, machine-to-machine privileged access, API secrets, and cloud controls while providing a customer-focused platform to easily use and leverage Pfizer's PAM services. This role reports to the Senior Director, Identity & Access Management (IAM) and requires a balance of strategic thinking, strong communication and leadership skills and broad technical expertise across cloud, on-premises, and SaaS environments to drive innovative PAM solutions and practices.

How You Will Achieve It

• Strategic Oversight and Implementation: Lead the development of the PAM strategy and corresponding roadmaps considering the corporate strategy, industry security trends, and regulatory requirements. Establish a strategy and multi-year plan incorporating all parts of PAM: scan/discovery, remediation, lifecycle management, password rotation, password vaulting, just in just-in-time administration. Architect, design, develop, and troubleshoot PAM solutions with the ability to provide technical and architectural design documentation, recommendations, specifications, use cases, requirements, and test cases. Create solutions that drive full automation, self-service, and resiliency. Work to improve and track the maturity of the IAM PAM products and capabilities showing increased adoption and resiliency. Lead the design, integration, and operationalization of PAM solutions, ensuring seamless implementation across diverse business units and technologies. Act as the primary liaison between technical teams, business units, and strategic stakeholders to advance PAM services within the organization.
• Automation: Develop and implement strategies for automating the provisioning, de-provisioning, and review processes for privileged accounts. Leverage business, security, and risk requirements to enhance process efficiency and drive continuous improvement initiatives, focusing on automation and streamlining across disparate systems.
• Metrics and Reporting: Establish key performance indicators (KPIs) and metrics to assess the effectiveness and adoption of PAM systems. Regularly produce and present comprehensive reports to leadership, highlighting progress, challenges, and opportunities for improvement in privileged access management initiatives.
• Financial Leadership: Direct the financial planning and execution for PAM services, including capital investments, technology refresh cycles, business-funded initiatives, contractor management, and personnel compensation. Ensure alignment with budgetary constraints and strategic objectives.
• Organizational Leadership: Manage a team of direct reports and contract service providers. Develop and implement staffing strategies to ensure the team is well-equipped with the necessary skills and capacity. Promote a culture of innovation and continuous improvement, ensuring team members are qualified, trained, and aligned with organizational goals.
• Risk Management: Identify and assess privileged access-related risks and vulnerabilities and develop strategies to mitigate these risks. Maintain a continuous review of privileged account hygiene and metrics behind stale and out-of-compliance accounts. Respond to security incidents related to privileged account compromise and lead investigations to determine root causes and remediation actions.

Qualifications (Must-Haves)

• Bachelor's degree in a relevant discipline (preferred not required)
• 10+ years of experience in IT/IAM/cybersecurity in a corporate environment.
• 5+ years of experience focused specifically on privileged access management (PAM) in organizations with greater than 10,000 users.
• Proven track record of leading teams, managing cross-functional projects, and interacting with senior stakeholders. Experience in managing both direct reports and external service providers.
• Extensive experience with PAM solutions and platforms such as CyberArk, BeyondTrust, or Thycotic, including their design, implementation, and operational management.
• Proficiency with related security technologies and practices, including Identity and Access Management (IAM), Multi-Factor Authentication (MFA), Single Sign-On (SSO), and threat detection.
• Strong background in integrating PAM solutions with diverse IT environments including Cloud, On-Premises, IaaS, and SaaS platforms (Azure, AWS).
• Experience with Agile methodologies and corresponding Agile-based tools. Demonstrated ability to work in an agile work environment possessing qualities such as a collaborative mindset, adaptability to change, and a proactive problem-solving approach.
• Experience in utilizing automation tools and scripting languages (e.g., PowerShell, Python) to streamline privileged access processes and improve operational efficiency.
• In-depth understanding of regulatory requirements and industry standards related to data protection and privacy, including GDPR, CCPA, HIPAA, and SOX.
• Proven experience in developing, implementing, and enforcing security policies and procedures to ensure compliance with applicable laws and regulations.
• Demonstrated ability to develop and execute strategic plans for privileged access management that align with organizational goals and industry best practices.
• Excellent verbal and written communication skills, with the ability to effectively present complex technical concepts to non-technical stakeholders and senior management.
• Strong analytical and problem-solving skills, with a proactive approach to identifying and addressing security risks and operational challenges.
• Ability to work collaboratively across various departments and teams, fostering a culture of security awareness and continuous improvement.

• Professional certifications such as CISSP, CISM, CIAM, or certifications in PAM tools (e.g. CyberArk Certified Delivery Engineer) are highly desirable.
• Non-Standard Work Schedule, Travel, or Environment Requirements
• Periodic international and domestic travel required (less than 5%)
• Supervision
• Oversight of 3+ individual contributor colleagues plus contingent workers.
• Candidate demonstrates a breadth of diverse leadership experiences and capabilities including the ability to influence and collaborate with peers, develop and coach others, oversee and guide the work of other colleagues to achieve meaningful outcomes, and create business impact.