PAM Engineer
Thales
At Thales, we know technology has the ability to make our world more secure, sustainable, and inclusive – and that it’s all driven by human intelligence.
Because it takes human intelligence to build and power the systems and solutions that people depend on every day. So we stay curious and make space for diverse points of view. We share what we know and we challenge what’s possible.
From manufacturing and engineering to cybersecurity and space, we’re driving progress in some of the world’s most important industries – and working together to build a future we can all trust.
OUR BENEFITS
In addition to interesting, engaging opportunities that impact at scale, and ongoing personal and professional development opportunities, Thales Cyber can offer you:
- Competitive remuneration structure
- Hybrid and flexible working options under the Thales Flex program
- Paid parental leave and family support through Parents at Work
- The day off on your birthday each year
- Novated Lease options
- Ongoing personal and professional development opportunities
- Sonder – Wellbeing & Support Partner
ABOUT THALES
Thales delivers cybersecurity products and services that keep people and assets safe, giving organisations confidence in the security of their digital journeys. Our solutions are deployed in 148 countries, helping governments to maintain sovereignty and organisations to preserve their strategic autonomy.
Thales is a global leader in cybersecurity — no.1 in data security — with more than 6,000 experts and developers worldwide. We bring trust and resilience to key industries including finance, health, retail and manufacturing, as well as critical sectors such as aerospace, defence, critical infrastructure and space.
YOUR ROLE
As a PAM Engineer within our Digital Identity practice, you will play a hands-on role delivering Privileged Access Management solutions for enterprise and government clients. Working within multidisciplinary delivery teams, you will implement, configure and integrate PAM technologies to secure privileged identities, enforce least-privilege access and strengthen identity security across complex environments.
You will contribute to the delivery of secure-by-design PAM capabilities including credential vaulting, privileged session management and privileged identity lifecycle processes, while collaborating with architects, engineers and project teams to deliver high-quality outcomes. This role also offers the opportunity to expand your expertise across broader digital identity platforms and contribute to continuous improvement across our engineering practices.
YOU’LL
- Implement, configure and troubleshoot PAM platforms such as CyberArk, Delinea, BeyondTrust and Microsoft PIM
- Deliver privileged access capabilities including credential vaulting, session management and elevation workflows
- Onboard servers, endpoints, cloud services, applications, databases and network devices into PAM platforms
- Integrate PAM platforms with identity sources and enterprise systems using connectors, APIs and scripting
- Work closely with architects, project managers and engineers to deliver client solutions on time and to a high standard
- Support testing, defect resolution, documentation and solution handover activities
- Troubleshoot complex issues across test and production environments and perform root cause analysis
- Contribute to reusable engineering assets, documentation and delivery frameworks
- Participate in design reviews to ensure alignment with architecture, security and compliance requirements
- Mentor junior engineers and contribute to knowledge sharing across the team
- Support continuous improvement initiatives across the Digital Identity practice
WHAT YOU’LL BRING
- 4–8 years’ experience in PAM engineering, security engineering, systems administration or system integration roles
- Hands-on experience with PAM platforms such as CyberArk, Delinea, BeyondTrust or Microsoft Entra / PIM
- Strong understanding of PAM concepts including privileged credential management, session recording, least privilege and privileged elevation
- Experience managing privileged access across Windows, Linux, Active Directory, cloud platforms and enterprise applications
- Experience working with REST APIs, scripting languages such as PowerShell or Python and automation approaches
- Familiarity with DevOps practices, CI/CD pipelines and source control tools such as Git
- Strong understanding of infrastructure and security across hybrid environments (on-premise and cloud)
- Strong troubleshooting and root cause analysis capability across complex systems
- Excellent written and verbal communication skills with the ability to collaborate with technical stakeholders
- Relevant cybersecurity, cloud or PAM certifications desirable
- Bachelor’s degree in IT, Computer Science, Cybersecurity or related field (or equivalent practical experience)
WE ENCOURAGE YOU TO APPLY
After you have applied, you will receive an email acknowledging your application. We’ll then provide a personalised experience for suitable applicants as we progress through the selection and assessment process. Prior to being offered employment, you will be required to complete pre-employment checks, including police and medical checks where applicable.
As a Defence security clearance is required for this role, applicants must be Australian citizens and eligible to obtain and maintain an appropriate clearance. To learn more about clearances, please visit http://www.defence.gov.au/AGSVA/.
#LI-PD1
It’s easy to dismiss the perfect opportunity if you don’t see yourself as the perfect fit. If this role feels right – no matter your background or personal circumstances – please introduce yourself or join our community. We’re committed to supporting a diverse workplace, and that starts here.
We’re proud to be endorsed by WORK180 as an Employer for All Women, but we know there’s always more we can do. We’ll continue to foster industry partnerships, employee resource groups (ERGs) and development opportunities to make Thales a genuinely equitable employer, for everyone.
