1

Strongdm Jobs (NOW HIRING)

Strongdm information

What are the two rules of Strongdm?

The two rules of Strongdm are to prioritize security and ensure reliable access to infrastructure. Employees are expected to follow best practices for credential management and use the platform's tools to maintain secure connections. These rules help maintain a safe and efficient work environment for those managing and accessing systems.

Who is the CEO of Strongdm?

As of October 2023, the CEO of Strongdm is Justin McCarthy. He co-founded the company and has led its growth in providing secure access and infrastructure management solutions. Leadership roles can change, so it's advisable to verify with current company sources for the latest information.

What does StrongDM do?

StrongDM is a company that provides infrastructure access management solutions, enabling organizations to securely connect to databases, servers, and cloud resources. It offers tools for access control, audit logging, and credential management to improve security and operational efficiency. The role of a person working at StrongDM may involve technical skills related to cybersecurity, cloud environments, and user authentication systems.

What is the difference between Strongdm vs DevOps Engineer?

FeatureStrongdmDevOps Engineer
Primary RoleSecure access management and infrastructure access controlDesigning, implementing, and maintaining deployment pipelines and infrastructure
Required SkillsAccess management, security protocols, cloud platformsAutomation, scripting, cloud services, CI/CD tools
Work EnvironmentIT/security teams, cloud environmentsDevelopment, operations, cloud platforms
CertificationsSecurity and cloud certifications (e.g., CISSP, AWS)DevOps, cloud, and automation certifications (e.g., AWS, Docker)

While Strongdm focuses on secure access management for infrastructure and teams, DevOps Engineers are responsible for automating and maintaining deployment pipelines and infrastructure. Both roles often collaborate in cloud environments but serve different core functions within an organization.

What's the easiest cyber security job to get?

Entry-level cybersecurity roles such as security analyst or security technician are generally the easiest to obtain, often requiring basic knowledge of networking, security principles, and common tools like firewalls and antivirus software. Certifications like CompTIA Security+ can help demonstrate foundational skills and improve job prospects for beginners.
More about Strongdm jobs
Infographic showing various Strongdm job openings in the United States as of July 2026, with employment types broken down into 100% Full Time. Highlights an 100% Physical job distribution.
Security Engineer - Privileged Access Management Oversight

Security Engineer - Privileged Access Management Oversight

Truist

Charlotte, NC • On-site

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

Posted 13 days ago


Truist rating

8.1

Company rating: 8.1 out of 10

Based on 114 frontline employees who took The Breakroom Quiz

47th of 145 rated banks


Job description

The position is described below. If you want to apply, click the Apply Now button at the top or bottom of this page. After you click Apply Now and complete your application, you'll be invited to create a profile, which will let you see your application status and any communications. If you already have a profile with us, you can log in to check status.

Need Help?

If you have a disability and need assistance with the application, you can request a reasonable accommodation. Send an email to Accessibility (accommodation requests only; other inquiries won't receive a response).

Regular or Temporary:

Regular

Language Fluency: English (Required)

Work Shift:

1st shift (United States of America)Please review the following job description:This role is responsible for designing, implementing, and enhancing technical controls and monitoring solutions that detect and prevent unauthorized use of privileged access across the enterprise.
This role plays a critical part in identifying anomalous and high-risk access behaviors by leveraging advanced detection tools, including SIEM platforms (Splunk) and endpoint detection solutions (CrowdStrike). The engineer partners closely with Security Operations, IAM, and Infrastructure teams to develop detection use cases, improve visibility, and strengthen the organization's security posture.

ESSENTIAL DUTIES AND RESPONSIBILITIES
Following is a summary of the essential functions for this job. Other duties may be performed, both major and minor, which are not mentioned below. Specific activities may change from time to time.

  • Identify and define unauthorized access scenarios, including credential misuse, privilege escalation, and anomalous account behavior.

  • Develop and tune Splunk/CrowdStrike queries, correlation searches, and alerts to detect suspicious privileged activity.

  • Leverage CrowdStrike (or equivalent EDR tools) to monitor endpoint-level indicators of compromise, lateral movement, and misuse of elevated privileges

  • Build and maintain detection use cases aligned with MITRE ATT&CK techniques related to identity and access abuse.

  • Correlate data from multiple sources (identity systems, logs, endpoints, cloud platforms) to identify potential threats.

  • Partner with Security Operations Center (SOC) and Incident Response teams to escalate and respond to confirmed incidents.

  • Design and implement automated detection and response mechanisms for privileged access risks.

  • Develop scripts or integrations (e.g., Python, APIs) to enhance monitoring, alerting, and reporting capabilities.

  • Continuously improve detection logic to reduce false positives and increase detection accuracy

  • Provide technical expertise to improve visibility into privileged account usage across on-prem and cloud environments.

  • Contribute to enforcement of least privilege and just-in-time access models through monitoring and analytics.

  • Create dashboards and reports in Splunk to track privileged access activity, trends, and risks.

  • Recommend improvements to detection coverage based on threat intelligence and incident learnings

Qualifications
Required Qualifications
The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

  • Bachelor's degree or equivalent education, training, and work-related experience.

  • Minimum of 5 years of experience in security engineering or related cybersecurity roles.

  • Advanced knowledge in cybersecurity principles, theories, and concepts.

  • Proven experience in software development lifecycle security practices.

  • Advanced knowledge of threat modeling, security testing, and penetration testing.

  • Experience implementing and managing complex information security technologies.

Preferred Qualifications

  • Experience developing detection use cases and threat hunting techniques for identity-based attacks.
  • Strong expertise in:
    • SIEM engineering and log analysis
    • Behavioral analytics and anomaly detection
    • Identity Threat Detection and Response (ITDR)
  • Experience with PAM tools such as StrongDM and CyberArk.
  • Familiarity with frameworks such as:
    • MITRE ATT&CK (especially credential access and privilege escalation techniques)
    • NIST and CRI Cybersecurity Framework
  • Scripting and automation skills (e.g., Python, PowerShell).
  • Experience integrating multiple data sources (cloud logs, Active Directory, EDR telemetry) into SIEM platforms.
  • Relevant certifications such as:
    • CISSP, GIAC (GCIA, GCIH), CEH, or Security+
  • Strong analytical, problem-solving, and communication skills.

General Description of Available Benefits for Eligible Employees of Truist Financial Corporation: All regular teammates (not temporary or contingent workers) working 20 hours or more per week are eligible for benefits, though eligibility for specific benefits may be determined by the division of Truist offering the position.Truist offers medical, dental, vision, life insurance, disability, accidental death and dismemberment, tax-preferred savings accounts, and a 401k plan to teammates. Teammates also receive no less than 10 days of vacation (prorated based on date of hire and by full-time or part-time status) during their first year of employment, along with 10 sick days (also prorated), and paid holidays. For more details on Truist's generous benefit plans, please visit our Benefits site. Depending on the position and division, this job may also be eligible for Truist's defined benefit pension plan, restricted stock units, and/or a deferred compensation plan. As you advance through the hiring process, you will also learn more about the specific benefits available for any non-temporary position for which you apply, based on full-time or part-time status, position, and division of work.

Truist is an Equal Opportunity Employer that does not discriminate on the basis of race, gender, color, religion, citizenship or national origin, age, sexual orientation, gender identity, disability, veteran status, or other classification protected by law. Truist is a Drug Free Workplace.

EEO is the Law E-Verify IER Right to Work


What Truist employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom


Truist logo

About Truist

Sourced by ZipRecruiter

Truist is combining distinctive personal service with investments in innovation to create transformational client experiences. We believe the unique blend of human touch and innovative technology will set us apart, instill confidence, and build deeper levels of trust with our clients

Industry

Finance and insurance

Company size

10,000+ Employees

Headquarters location

Charlotte, NC, US

Year founded

2019