Lead Infrastructure Security Engineer – Privileged Access Management / Secrets Management

Job Classification:

Technology - Engineering & Cloud

Are you interested in building capabilities that enable the organization with innovation, speed, agility, scalability and efficiency? The Global Technology team takes great pride in our culture where digital transformation is built into our DNA! When you join our organization at Prudential, you’ll unlock an exciting and impactful career – all while growing your skills and advancing your profession at one of the world’s leading financial services institutions.  

  

Your Team & Role 

As a Lead Infrastructure Security Engineer specializing in Privileged Access Management and Secrets Management within the Identity Governance and Administration team, you will collaborate closely with product owners, technology leads, engineers, and delivery professionals to enhance Prudential’s critical security platforms. Your primary responsibility will be to ensure our Privileged Access Management platform consistently aligns with Information Security Standards and established processes. Success in this role requires exceptional problem-solving abilities, clear and effective communication, and a commitment to teamwork. You will demonstrate agile methodologies, strong business acumen, inclusive leadership, and a passion for continuous learning, driving both innovation and operational excellence in everything you do.   

   

Here is What You Can Expect on a Typical Day   

• Collaborate with Identity Governance and Administration product owner, technical leads, and cross-functional teams to define, drive, and implement the strategic roadmap for Privileged Access Management (PAM) and Secrets Management solutions.

• Leverage modern technologies, including cloud-native PAM platforms, Zero Trust security frameworks, and automated secrets management tools, to enhance overall security posture and streamline operational workflows.

• Integrate best practices in privileged access and secrets management throughout all stages of the product lifecycle, ensuring continuous improvement and adherence to security standards.

• Monitor emerging trends and technologies in the security landscape, proactively recommending and implementing solutions that support business objectives and innovation.

• Communicate effectively to key stakeholders and associates.

• Coordinate the scheduling of patches and upgrades of Identity Management platform systems as well as ensure accurate operational information in CMDB.

• Manage multiple engagements and competing priorities in a results-based team environment.

• Review and understand all applicable Information Security Standards and Engineering Specifications; create an action plan to remediate out of compliance issues.

The Skills & Expertise You Bring 

• Demonstrated subject matter expertise in Privileged Access Management (PAM) and Secrets Management, with hands-on experience operating, supporting, and optimizing platforms such as CyberArk and HashiCorp.

• Proven ability to lead and manage multiple complex programs and projects simultaneously in a fast-paced, results-driven environment.

• Advanced skills in designing, implementing, and maintaining target and current state security architectures; identifying gaps and developing phased roadmaps to achieve desired outcomes.

• Proficiency in data analysis and risk assessment to identify attack surfaces, plan remediation efforts, and ensure ongoing governance and integrity of security controls.

• In-depth knowledge of identity and access controls across Windows, Linux, and SaaS environments, including account and group management, federation, and single sign-on (SSO) integration.

• Hands-on experience integrating PAM and Secrets Management solutions with platforms such as ServiceNow, SailPoint, major cloud providers (AWS, Azure, GCP, Equinix), VMware, Windows, and Red Hat Enterprise Linux (RHEL).

• Ability to automate administrative processes related to PAM and Secrets Management using scripting and automation tools (e.g., PowerShell, Python, Ansible, or similar).

• Experience integrating with monitoring and SIEM solutions such as Splunk, including the design and development of custom dashboards and alerts for security visibility.

• Excellent communication skills, with the ability to translate complex technical concepts for both technical and non-technical stakeholders.

• Strong organizational and time management skills, with the flexibility to provide rotational on-call support as required.

• Up-to-date knowledge of industry best practices, regulatory requirements (such as SOX, PCI-DSS, HIPAA), and emerging trends in identity security.

You’ll Love Working Here Because You Can  

Join a team and culture where your voice matters; where every day, your work transforms our experiences to make lives better. As you put your skills to use, we’ll help you make an even bigger impact with learning experiences that can grow your technical AND leadership capabilities. You’ll be surprised by what this rock-solid organization has in store for you. 

What we offer you:

Prudential is required by state specific laws to include the salary range for this role when hiring a resident in applicable locations. The salary range for this role is from $133,600.00 to $220,400.00. Specific pricing for the role may vary within the above range based on many factors including geographic location, candidate experience, and skills.

• Market competitive base salaries, with a yearly bonus potential at every level. 

• Medical, dental, vision, life insurance, disability insurance, Paid Time Off (PTO), and leave of absences, such as parental and military leave. 

• 401(k) plan with company match (up to 4%). 

• Company-funded pension plan. 

• Wellness Programs including up to $1,600 a year for reimbursement of items purchased to support personal wellbeing needs. 

• Work/Life Resources to help support topics such as parenting, housing, senior care, finances, pets, legal matters, education, emotional and mental health, and career development.  

• Education Benefit to help finance traditional college enrollment toward obtaining an approved degree and many accredited certificate programs.  

• Employee Stock Purchase Plan: Shares can be purchased at 85% of the lower of two prices (Beginning or End of the purchase period), after one year of service. 

Eligibility to participate in a discretionary annual incentive program is subject to the rules governing the program, whereby an award, if any, depends on various factors including, without limitation, individual and organizational performance. To find out more about our Total Rewards package, visit Work Life Balance | Prudential Careers. Some of the above benefits may not apply to part-time employees scheduled to work less than 20 hours per week.