← All open roles
BeyondTrust Privileged Remote Access Engineer
Deliver BeyondTrust Privileged Remote Access (PRA) and Password Safe implementations across commercial and managed service clients. You'll design third-party vendor access models, build just-in-time workflows, and integrate PRA with SIEM and ITSM tooling.
What you'll do
- Design and deploy BeyondTrust Privileged Remote Access architectures including Jumpoints and Jump Clients
- Configure Password Safe for credential rotation, session management, and privileged account discovery
- Build vendor access workflows including approval, time-bound grants, and session recording policies
- Integrate PRA with SIEM (Splunk, Sentinel) and ITSM (ServiceNow) for event correlation and ticket automation
- Deploy Endpoint Privilege Management (EPM) where in scope
- Troubleshoot client issues across firewall, certificate, and network connectivity
- Support migrations from legacy remote access tools to BeyondTrust
What we need from you
- 3+ years hands-on BeyondTrust experience across PRA and Password Safe
- BeyondTrust Certified Engineer or equivalent demonstrated delivery experience
- Experience with vendor access use cases and third-party remediation workflows
- Working knowledge of Active Directory, Windows and Linux server administration, and firewall concepts
- US-based with unrestricted work authorization
Bonus, not required
- BeyondTrust Endpoint Privilege Management (EPM) experience
- Prior migration from CyberArk, Delinea, or custom vendor portals to BeyondTrust
- Scripting experience (PowerShell, Python) for custom integrations
- ServiceNow PAM integration patterns
What you'll get
Competitive base plus utilization and performance bonuses. Full medical, dental, vision, 401(k) with match, paid certifications, and conference sponsorship.