Role Overview
o The Privileged Access Engineer (PAM) with AI Capabilities is responsible for securing privileged access across enterprise systems by implementing advanced PAM solutions while leveraging Artificial Intelligence (AI) and Machine Learning (ML) to enhance threat detection, automation, and decision-making.
o This role blends cybersecurity engineering with AI-driven analytics to proactively identify risks, automate privileged access controls, and enable adaptive security frameworks.
Key Responsibilities
1. PAM Engineering & Implementation
• Design, implement, and manage PAM solutions:
o CyberArk, BeyondTrust, Delinea, HashiCorp Vault
• Configure:
o Privileged account onboarding and lifecycle management
o Password vaulting, rotation, and credential management
o Privileged Session Management (PSM)
• Implement Just-In-Time (JIT) and Just-Enough-Access (JEA) models
2. AI-Driven Security & Automation
• Develop and integrate AI/ML models to:
o Detect anomalous privileged access behavior
o Identify insider threats and suspicious activity
o Predict and prevent access misuse
• Use AI for:
o Behavioral analytics (UEBA User & Entity Behavior Analytics)
o Risk-based authentication and access decisions
• Implement intelligent automation for:
o Privileged account onboarding/offboarding
o Access approvals and policy enforcement
3. Advanced Monitoring & Threat Detection
• Leverage AI-enabled SIEM tools (e.g., Splunk, Microsoft Sentinel) for:
o Real-time monitoring of privileged sessions
o Automated alert prioritization
• Implement:
o Session recording and playback o AI-driven anomaly detection and alert tuning
• Support incident response and forensic investigations
4. Integration & Data Engineering
• Integrate PAM with: o IAM systems (Entra ID, Okta, SailPoint)
o Security tools (SIEM, SOAR, EDR/XDR)
o Cloud platforms (AWS, Azure, GCP)
• Work with: o APIs, REST services, JSON
o Data pipelines for feeding security analytics platforms
• Build AI-ready datasets from logs and access activity
5. Governance, Risk & Compliance
• Enforce:
o Least privilege access
o Zero Trust principles
• Support compliance with:
o SOX, GDPR, PCI-DSS, ISO 27001
• Generate AI-assisted compliance reports and audit insights
• Contribute to policy definition and governance frameworks
6. Automation & DevSecOps
• Develop scripts and automation workflows using:
o Python, PowerShell, Bash
• Integrate PAM into:
o CI/CD pipelines (DevSecOps)
• Implement AI-assisted remediation workflows using SOAR tools
7. Collaboration & Innovation
• Partner with:
o Security operations (SOC) teams
o Data science / AI teams
o IAM architects and cloud engineers
• Evaluate emerging AI-driven security tools
• Drive innovation in Intelligent Identity Security and Autonomous Access Management
TCS Employee Benefits Summary:
Discretionary Annual Incentive.
Comprehensive Medical Coverage: Medical & Health, Dental & Vision, Disability Planning & Insurance, Pet Insurance Plans.
Family Support: Maternal & Parental Leaves.
Insurance Options: Auto & Home Insurance, Identity Theft Protection.
Convenience & Professional Growth: Commuter Benefits & Certification & Training Reimbursement.
Time Off: Vacation, Time Off, Sick Leave & Holidays.
Legal & Financial Assistance: Legal Assistance, 401K Plan, Performance Bonus, College Fund, Student Loan Refinancing.
Salary Range: $120,000- 130,000 a year