System Administrator II (PAM)

The System Administrator II (PAM) at New York University (NYU) holds a pivotal role within NYU’s Identity and Access Management (IaM) team by maintaining the integrity, security, and operational efficiency of key enterprise IaM technologies. This individual serves as the primary administrator for NYU's PAM system while also providing secondary support for critical Identity and Access Management Infrastructure (IaM) including Lightweight Directory Access Protocol (LDAP), Single Sign-On (SSO), and Multi-Factor Authentication (MFA) systems. The role encompasses a spectrum of responsibilities including system administration, consulting and supporting technology integrations, and providing subject matter expertise for university-wide IT projects. This role contributes to process improvement initiatives to continuously enhance the security posture of the university and improve IaM operations. Must be able to collaborate as a team member in a dynamic environment and must also possess exceptional analytical, communication, and problem-solving skills. A high level of confidentiality and professionalism is required, as well as a track record of IaM technology administration, process oversight, and IaM integrations and architectures.

Required Education:
Bachelor's Degree in Computer Science, related field, or equivalent years of experience.

Required Experience:
3+ years experience in Privileged Access Management (PAM)

Preferred Experience:
Experience working with BeyondTrust PasswordSafe specifically In-depth knowledge of modern authentication standards, protocols, and frameworks, including Active Directory or LDAP, SAML, OAUTH2, OIDC, Kerberos, etc. Proven experience in Single Sign-On (SSO) integration for SaaS-based and private applications using BeyondTrust PAM or similar products. Strong expertise in integrating Multi-Factor Authentication (MFA) into the authentication, authorization, and SSO process for applications and systems. Experience working with IaM technologies in one of the major cloud providers: AWS, Azure, GCP.

Required Skills, Knowledge and Abilities:
Experience working with any of the leading PAM solutions and providers. Experience with privileged password management/credential vaulting. Prior hands-on experience with setup, configuration, onboarding accounts, integrations, and creating policies/making policy changes within PAM environment. Experience with one or more Identity and Access Management systems such as Active Directory, OpenLDAP, Duo MFA, Okta, Microsoft Entra, or Single Sign-On.

In compliance with NYC's Pay Transparency Act, the annual base salary range for this position is USD $105,000.00 to USD $125,000.00. New York University considers factors such as (but not limited to) scope and responsibilities of the position, candidate's work experience, education/training, key skills, internal peer equity, as well as, market and organizational considerations when extending an offer. This pay range represents base pay only and excludes any additional items such as incentives, bonuses, clinical compensation, or other items.

NYU aims to be among the greenest urban campuses in the country and carbon neutral by 2040. Learn more at nyu.edu/nyugreen.

EOE/AA/Minorities/Females/Vet/Disabled/Sexual Orientation/Gender Identity