Search by job, company or skills

ZEISS Group

Senior Security Engineer - Privileged Access Management (f/m/x)

ZEISS Group
Petaling Jaya, Malaysia, Selangor
8-10 Years
Save
new job description bg glownew job description bg glownew job description bg svg
  • Posted 2 hours ago
  • Be among the first 10 applicants
Early Applicant

Job Description

Welcome to ZEISS – a company that combines innovation and responsibility! Our corporate functions are diverse and make a decisive contribution to the strategic orientation and sustainable success of ZEISS.

As a Senior Security Engineer (Privileged Access Management) you will be responsible for engineering, evolution and operations of our Privileged Access Management ecosystem, specifically leveraging BeyondTrust Password Safe. As an engineer you will also provide escalation support and resolution for complex incidents that cannot be resolved at the L2 level to ensure reliable and compliant service delivery in collaboration with internal stakeholders and external providers.

Primary Responsibilities

  • Implementation & Configuration: Deploy, configure and support PAM solution using BeyondTrust Password Safe
  • Migration & Optimization: Support ongoing efforts to migrate legacy privileged accounts into the BeyondTrust vault and optimize existing workflow
  • Identity Infrastructure (AD & Entra ID): Manage the integration of BeyondTrust with Active Directory (OU structures, GPOs, and Kerberos) and Microsoft Entra ID
  • API & Scripting: Design and deploy PowerShell or Python scripts using BeyondTrust REST APIs to automate bulk onboarding, secret rotation, and session monitoring alerts.
  • Incident Response Support: Investigate, troubleshoot and resolve security incidents involving endpoint compromise or privilege escalation.
  • Operational Excellence: Perform regular platform upgrades, patching, and health checks.
  • Technical Mentorship: Provide guidance and training to junior security analysts on Privileged Access Management best practices and incident handling.

Your profile

  • 8+ years in Cybersecurity, with 3+ years of dedicated PAM experience in BeyondTrust Password Safe or equivalent PAM solutions i.e. CyberArk
  • Strong proficiency in Microsoft Entra ID (Azure AD) and on-premise Active Directory architectures.
  • Advanced knowledge of Active Directory (Kerberos, LDAP, GPO) and Microsoft Entra ID (Service Principals, Managed Identities, App Registrations).
  • Experience participating in at least one large-scale IAM or PAM migration (e.g., tool-to-tool or on-prem to cloud) is highly preferred
  • Strong background in IT Service Management, product ownership, or service delivery for security‑critical service
  • Excellent communication skills in English, with the ability to collaborate across global teams

Your ZEISS Recruiting Team

Markus Repp

More Info

Job Type:
Permanent Job
Industry:
Other
Function:
Cybersecurity
Employment Type:
Full time

About Company

ZEISS Group

Job ID: 146622283

Jobs by Skill - IT
Jobs by Skill - Non IT
International Jobs
Last Updated: 01-05-2026 02:38:12 AM
Homejobs in Petaling JayaSenior Security Engineer - Privileged Access Management (f/m/x)

Similar Jobs

Scada Engineer (Ignition)

Avensys Consulting

DELMIA Infrastructure Consultant/Architect

Dassault Systemes

Presales Lead

enfrasys

Salesforce Engineer

lavu tech solutions sdn bhd

Snr SRE Engineer

RHB Banking Group
R