We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
New
University of California - San Francisco Campus and Health jobs

Privileged Access Management (PAM) Engineer

University of California - San Francisco Campus and Health
United States, California, San Francisco
Aug 21, 2025

Privileged Access Management (PAM) Engineer

IT Identity and Access Mgt

Full Time

85894BR

Job Summary

The Identity and Access Management (IAM) Privileged Access Management (PAM) Engineer will be responsible for the development, implementation, and maintenance of IAM solutions that align with the University's security policies and requirements. This includes evaluating hosting platforms, configuration technologies, and ensuring consistency between production and non-production environments. This role will partner closely with the IAM Director, IAM Managers, Senior Engineers, Administrators, Analysts, various departments across the University, and external vendors to ensure that access and identity data are granted to users in a secure, compliant, and efficient manner. The IAM PAM Engineer is an important part of the Privileged Access Management (PAM) team and participates in designing, implementing, and maintaining the technical infrastructure that manages privileged accounts and access within UCSF. This role involves ensuring that privileged access is secure, monitored, and compliant with UCSF policies and regulatory requirements. The IAM PAM Engineer works with various PAM tools and technologies to safeguard critical systems and data from unauthorized access and potential security breaches.

The IAM PAM Engineer will positively impact the University of California, San Francisco's (UCSF) operations and culture by protecting University stakeholders' information and data in service of the institution's academic, medical, and research mission. This team member will advance the University's mission by delivering exceptional security service comprehensively and consistently across faculty, staff, and students. This role will execute UCSF's vision while modeling UCSF's culture and values.

The final salary and offer components are subject to additional approvals based on UC policy.

Your placement within the salary range is dependent on a number of factors including your work experience and internal equity within this position classification at UCSF. For positions that are represented by a labor union, placement within the salary range will be guided by the rules in the collective bargaining agreement.

The salary range for this position is $98,300 - $210,300 (Annual Rate).

To learn more about the benefits of working at UCSF, including total compensation, please visit: https://ucnet.universityofcalifornia.edu/compensation-and-benefits/index.html

Department Description

University of California, San Francisco (UCSF) is distinguished as a leading academic healthcare organization, home to groundbreaking discoveries, world-class education, and exceptional healthcare services. Infrastructure Services (IS) is the backbone of the technological infrastructure, assuring the technical services that enable the academic, medical, and research missions of the organization. Beyond a focus on maintaining systems and resolving issues, we are committed to nurturing the potential of our team members and empowering them to excel. UCSF Infrastructure Services provides 24x7 support to the University community, always upholding the highest level of responsiveness and reliability for our customers. IS values innovation and excellence in ensuring secure and efficient Information Technology (IT) services, regardless of the hour or complexity of the issue.

The Identity and Access Management (IAM) Services team within Infrastructure Services protects UCSF's resources through access management, including accounts, authentication, access, and role-based provisioning at the enterprise level. This team implements rigorous regulation of UCSF data through granular access control and the auditing of all UCSF assets on the premises and in the cloud. By ensuring information security at UCSF, the IAM Services team enables the academic, medical, and research mission of UCSF.

Required Qualifications


  • Bachelor's Degree or equivalent combination of experience/training in one or more of the following fields: cybersecurity, information technology, computer science, public administration, business administration, communications.
  • 3+ years of experience working in one or more of the following fields: cybersecurity, computer science, computer information systems, etc.
  • Experience with the implementation and integration of Identity and Access Management (IAM) systems and tools.
  • Demonstrated skills applying security controls to computer software and hardware.
  • Hands-on experience with directory services (e.g., Active Directory, Lightweight Directory Access Protocol (LDAP)), Privileged Access Management solutions (e.g., CyberArk, Beyond Trust, Delinea).
  • Basic understanding of Linux, Windows Server Administration, and Unix servers.
  • Knowledge of data encryption technologies and experience selecting and applying appropriate data encryption technologies.
  • Proficient in scripting and programming languages (e.g., PowerShell, Python, Java) for automation and integration purposes.
  • Experience in incident response and digital forensics including reporting.
  • Strong written and verbal communication skills and ability to communicate technical information and ideas to a diverse community of colleagues and stakeholders.
  • Ability to establish and advance positive working relationships and a strong rapport with team members, stakeholders, and customers.
  • Strong organizational skills and ability to balance competing priorities and support concurrent projects. Experience working in a project-based environment using leading project management practices including schedule management, status reporting, and communication of project risks and issues.
  • Demonstrated problem-solving skills; ability to scope solutions based on knowledge of available resources and timelines. Ability to ask questions, gather information, evaluate options, and make decisions with integrity.

Preferred Qualifications


  • Experience with the Delinea solutions is highly desired.
  • One or more of the following certifications: CCNP Security, Cisco Certified Internetwork Expert (CCIE) Security, Offensive Security Certified Professional (OSCP), Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or equivalent
  • Cisco Certified Internetwork Expert (CCIE) Security

About UCSF

The University of California, San Francisco (UCSF) is a leading university dedicated to promoting health worldwide through advanced biomedical research, graduate-level education in the life sciences and health professions, and excellence in patient care. It is the only campus in the 10-campus UC system dedicated exclusively to the health sciences. We bring together the world's leading experts in nearly every area of health. We are home to five Nobel laureates who have advanced the understanding of cancer, neurodegenerative diseases, aging and stem cells.

Pride Values

UCSF is a diverse community made of people with many skills and talents. We seek candidates whose work experience or community service has prepared them to contribute to our commitment to professionalism, respect, integrity, diversity and excellence - also known as our PRIDE values.

In addition to our PRIDE values, UCSF is committed to equity - both in how we deliver care as well as our workforce. We are committed to building a broadly diverse community, nurturing a culture that is welcoming and supportive, and engaging diverse ideas for the provision of culturally competent education, discovery, and patient care. Additional information about UCSF is available at diversity.ucsf.edu

Join us to find a rewarding career contributing to improving healthcare worldwide.

Equal Employment Opportunity

The University of California is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, or other protected status under state or federal law.

Organization

Campus

Job Code and Payroll Title

007367 SYS INTEGRATION ENGR 3

Job Category

Clinical Systems / IT Professionals

Bargaining Unit

99 - Policy-Covered (No Bargaining Unit)

Employee Class

Career

Percentage

100%

Location

San Francisco, CA

Campus

Mission Center Building (SF)

Work Style

Fully On-Site

Shift

Days

Shift Length

8 Hours

Additional Shift Details

M-F, 9am-5pm, as required after hours support

Applied = 0
MORE JOBS LIKE THIS

(web-5cf844c5d-bzcc6)