Enterprise Technology is a global organization within Transamerica. We provide dedicated application support to Transamerica, and we bring all of Aegon's business units together through the use of technology. We provide the backbone - the infrastructure - for how everything works. We’re creating the company’s AI environment, building a flexible ‘cloud experience’ for internal hosting services, designing frameworks for data governance and management, and ensuring the security and stability of the company’s technology. In short, we enable the business units to move more quickly and deliver to our clients in the best possible way. Whether customers are interested in insurance products or annuities or financial services, we're here to ensure they don't have to worry whether their information is safe. The people we employ are incredibly diverse, both in terms of backgrounds and skill sets. There are over 1000 of us representing a dozen or so nationalities and located in the UK, the US, the Netherlands, Hungary, Spain, and Hong Kong. Our global teams are comprised of experts in areas such as application development, information security, infrastructure services, data & analytics, risk & controls, procurement, program management, and architecture. With the breadth of functions within Enterprise Technology, individuals can pursue a wide variety of careers, and we have a focus on supporting employees’ development. The most important quality in the people who join us is curiosity. A lot of what we do is problem solving, requiring colleagues to take what they know and apply it to new situations. We have many mature processes, but we’re always looking for opportunities to improve, so we want people who are naturally inquisitive and confident enough to challenge the way we do things. Technology is constantly, rapidly changing – we need you to help us continue to change with it.

The Privileged Access Management (PAM) organization is responsible for the management and governance of privileged access throughout Aegon.  As a PAM Associate Principal, you will drive the successful delivery and implementation of the Privileged Access Management program.

What You Will Do:

  • Design, configure, install, integrate, and maintain our PAM Solutions (CyberArk) across the enterprise environments. 
  • Provide solutions to effectively manage human, non-human, vendor, contractor, service, application, and cloud privileged accounts.
  • Provide subject matter expertise to our business partners on how to manage privileged accounts while acting as an advocate for Enterprise Technology (ET) and our overall Security platform.
  • Work closely with PAM Engineering to identify improvements and troubleshoot incidents as they arise.
  • Assist with troubleshooting privileged access related issues across the enterprise environment. 
  • Assist with shifting cultural change towards a centralized security management program
  • Mentor junior members of the team
  • Lead large initiatives in driving the PAM environment changes including presenting and influencing at the senior levels in the organization
  • Ensure the PAM program will have the required Characteristics to support various Regulations and Standards such as SOX, NYDFS, NIST and SOC
  • Create and present various material related to the PAM program at the executive-level (e.g. architectural diagrams, program roadmaps, business cases)

Qualifications

  • Bachelor’s degrees in computer science or related degree, or equivalent education/experience
  • 10+ years of experience managing privileged access and integrating with platforms such as LDAP, Windows/UNIX, databases, network devices, and applications.
  • Expert knowledge of Windows, Linux, and Mainframe systems, and how accounts and access are managed across the environments.
  • 3+ years of experience scripting automation tasks
  • Experience creating, managing, and training customers about safes, vaults, session management, key managers, credential providers, platforms, and secrets management
  • Behavioral & Leadership Competencies:
    • Commitment
    • Interpersonal Skills
    • Learning Aptitude
    • Critical Thinking
    • Resourcefulness
    • Tolerance of Ambiguity

Preferred

  • Extensive experience with CyberArk On-Premise Solutions (CCP, CP, Alero, Secrets Hub, PSM, Conjur)
  • Certification (Sentry/Guardian) on the CyberArk platform
  • Knowledge of IAM, network architecture, and security concepts
  • Experience working in an Agile Scrum framework
  • Experience working in DevSecOps
  • Certified Information Systems Security Professional, CISSP Certified
  • 12+ years of experience in IT/Security

Working Conditions

  • This is a hybrid position requiring three days in office per week in one of our core locations (Cedar Rapids, Denver). 
  • May require some international travel <10%
  • May require non-standard work hours due to global support and a globally dispersed team

Compensation:

The Salary for this position generally ranges between $122,000 -$162,000 annually. Please note that the salary range is a good faith estimate for this position and actual starting pay is determined by several factors including qualifications, experience, geography, work location designation (in-office, hybrid, remote) and operational needs. Salary may vary above and below the stated amounts, as permitted by applicable law.

Additionally, this position is typically eligible for an Annual Bonus based on both Company and individual Performance and is at the Company’s discretion. 

Applicants must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time.

Relocation assistance will not be provided for this position.

Our commitment to inclusion & diversity means that we value differences. We encourage the unique perspectives of employees and are dedicated to creating a respectful and inclusive work environment.