**Work Schedule** First Shift (Days) **Environmental Conditions** Office **Job Description** **About the Role** This is an outstanding opportunity to join Thermo Fisher Scientific Inc., a global leader in science and technology, located in Frederick. As a Senior IT Security Engineer specializing in Privileged Access Management (PAM), you will lead ground-breaking initiatives across our vast enterprise. You will play a crucial role in crafting and optimizing our PAM strategies, ensuring the secure management of enterprise secrets. **Key Responsibilities** Strategic PAM Leadership & SME Functions + Own and drive PAM strategy for enterprise-wide privileged access domains and secrets management initiatives + Serve as primary SME for PAM tooling optimization, secrets hardening, and enterprise-scale deployment + Develop and implement annual PAM goals that align with organizational PMD objectives, with a focus on automation and efficiency. + Lead multi-functional PAM initiatives and represent the team in enterprise-wide security projects **Advanced Technical Operations & Automation** + Architect and implement complex PAM solutions for enterprise-wide secrets management + Implement metrics and indicators to monitor PAM program efficiency + Craft and maintain enterprise-level privileged access controls and automated secrets management solutions + Drive automation initiatives for recurring PAM tasks and compliance reporting + Lead comprehensive risk assessments for privileged access environments **Communication & Collaborator Management** + Simplify complex PAM concepts for non-technical audiences + Develop and present PAM materials and strategic recommendations to leadership + Build and own strong multi-functional relationships across IT and business units + Proactively communicate PAM posture updates to business collaborators **Required Qualifications** Education & Certifications + Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field (equivalent experience accepted) + Advanced PAM certifications required: CyberArk Certified Delivery Engineer, BeyondTrust Certified Professional, or equivalent + Additional security certifications preferred: CISSP, CISM, GSEC, or similar **Experience** + 6+ years of enterprise security experience with focus on privileged access management + 4+ years of hands-on PAM operations experience in large-scale enterprise environments + 3+ years of demonstrated leadership in sophisticated PAM implementations **Technical Skills** + Expert-level knowledge of PAM principles and privileged access security frameworks + Advanced proficiency in enterprise PAM platforms (Secret Server, CyberArk, BeyondTrust) + Strong experience with directory services and identity management integration + Demonstrated ability to architect tool-agnostic PAM solutions + Experience with cloud PAM and DevOps secrets integration **Leadership & Consulting Skills** + Outstanding influence and persuasion abilities with a track record of driving PAM change + Critical thinking and problem-solving skills to identify critical points for PAM transformation + Strong consulting and advisory skills with experience challenging existing practices + Superb communication abilities with capability to present complex PAM concepts to executive audiences + Proven mentorship and training capabilities + Cultural change leadership with experience overcoming organizational resistance **Specialized Proficiencies** + Deep understanding of threats to privileged accounts and credential security + Experience with regulatory compliance requirements related to privileged access management + Knowledge of threat modeling and risk assessment methodologies + Familiarity with DevSecOps practices and automated PAM integration in CI/CD pipelines + Understanding of zero trust architecture principles and PAM implementation **What We Offer** Join our elite organization and pioneer PAM transformation across our global enterprise. Drive significant impact in privileged access security while developing innovative solutions for handling massive volumes of enterprise secrets. We provide competitive compensation, comprehensive benefits, leadership development opportunities, and the chance to become the shining light of PAM excellence! **Compensation and Benefits** The salary range estimated for this position based in Maryland is $113,500.00–$170,200.00. This position may also be eligible to receive a variable annual bonus based on company, team, and/or individual performance results in accordance with company policy. We offer a comprehensive Total Rewards package that our U.S. colleagues and their families can count on, which includes: + A choice of national medical and dental plans, and a national vision plan, including health incentive programs + Employee assistance and family support programs, including commuter benefits and tuition reimbursement + At least 120 hours paid time off (PTO), 10 paid holidays annually, paid parental leave (3 weeks for bonding and 8 weeks for caregiver leave), accident and life insurance, and short- and long-term disability in accordance with company policy + Retirement and savings programs, such as our competitive 401(k) U.S. retirement savings plan + Employees’ Stock Purchase Plan (ESPP) offers eligible colleagues the opportunity to purchase company stock at a discount For more information on our benefits, please visit: https://jobs.thermofisher.com/global/en/total-rewards Thermo Fisher Scientific is an EEO/Affirmative Action Employer and does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability or any other legally protected status.