Students! Find the fintech job of your dreams here.

Georgia Fintech Academy
Georgia Fintech Academy

Principal Engineer, IAM



Houston, TX, USA · Atlanta, GA, USA
Posted on Saturday, August 26, 2023

As one of the world’s leading asset managers, Invesco is dedicated to helping investors worldwide achieve their financial objectives. By delivering the combined power of our distinctive investment management capabilities, we provide a wide range of investment strategies and vehicles to our clients around the world.

If you're looking for challenging work, smart colleagues, and a global employer with a social conscience, come explore your potential at Invesco. Make a difference every day!

Job Description

As one of the world’s leading asset managers, we are solely dedicated to delivering an investment experience that helps people get more out of life. If you're looking for challenging work, smart colleagues, and a global employer with a social conscience, explore your potential at Invesco

The Department

As a part of Global Security’s Information Security organization, the Identity & Access Management (IAM) team protects Invesco against a dynamic threat landscape and advances Invesco’s purpose by empowering and enforcing secure access to drive desired business outcomes and digital experience goals. IAM manages the digital identities and entitlements of people, services and things, and the relationships and trust among them. We collaborate and partner with Business Units, Technology and Security to address IAM risks, provide IAM platform / solution services, standardize IAM processes by onboarding applications to our IAM platform / solutions.

Your Role

Acts as a domain expert from our IAM team who understands the functional and technical needs and assists application, platform and infrastructure teams with onboarding privileged accounts to our Privileged Access Management (PAM) solutions. Streamlines and standardizes privileged access management processes and technologies / solutions with a blend of legacy and innovation platforms for delivering PAM future state across the organization in support of our PAM program.

You will be responsible for:

  • Lead PAM solution architecture and design activities.

  • Install and configure PAM product(s) as per the functional and technical requirements and solution architecture blueprint.

  • Lead efforts to discover privileged accounts and onboard to PAM solutions, coordinating efforts across teams as needed while tracking and reporting progress.

  • Configure PAM solution connectors for integration with organization wide information systems, platforms and applications.

  • Coordinate development of custom connectors where integration is not available or supported by the PAM solutions out of the box.

  • Support PAM solution operations and maintenance activities with the help of IAM/PAM product experience.

  • Motivated self-starter with ability to work independently with limited supervision.

  • Possesses diplomacy and cooperative style necessary to interface effectively with all personalities and across functional disciplines.

  • Holds one or more relevant security or technology-related certifications (such as CISSP, CyberArk Certified Defender / Trustee or similar).

The experience you bring:

  • 6 to 9 years of experience in implementing PAM solutions

  • Hands-on experience in PAM products such as CyberArk.

  • Expert understanding of PAM product architecture and components.

  • Advanced experience of installing, configuring and upgrading/migrating PAM solution components.

  • Advanced experience in technologies such as Java, LDAP, SSL RDBMS and Linux.

  • Advanced experience in cloud computing platforms such as AWS and Azure.

  • Advanced experience with secrets management tools such as AWS Secrets Manager, CyberArk Conjur, CyberArk Secrets Hub, and Azure Key Vault.

  • Advanced experience in operating Windows and UNIX based systems.

  • Advanced experience in one or more major scripting languages e.g. Perl, Python, PowerShell.

  • Strong knowledge and skills in maintaining PAM solutions in a large, complex organization.

  • Production support experience in incident management, problem management and change management for issues related to PAM solutions and its components.

  • Strong knowledge of best practices associated with design and implementation of PAM solutions.

Full Time / Part Time

Full time

Worker Type


Job Exempt (Yes / No)


Workplace Model

At Invesco, our workplace model supports our culture and meets the needs of our clients while providing flexibility our employees value. As a full-time employee, compliance with the workplace policy means working with your direct manager to create a schedule where you will work in your designated office at least three days a week, with two days working outside an Invesco office.

What’s in it for you?

Our people are at the very core of our success. Invesco employees get more out of life through our comprehensive compensation and benefit offerings including:

  • Flexible time off and opportunities for a flexible work schedule

  • 401(K) matching of 100% up to the first 6% with additional supplemental contribution

  • Health & wellbeing benefits

  • Parental Leave benefits

  • Employee stock purchase plan

The above information on this description has been designed to indicate the general nature and level of work performed by employees within this role. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job. The job holder may be required to perform other duties as deemed appropriate by their manager from time to time.

Invesco's culture of inclusivity and its commitment to diversity in the workplace are demonstrated through our people practices. We are proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, creed, color, religion, sex, gender, gender identity, sexual orientation, marital status, national origin, citizenship status, disability, age, or veteran status. Our equal opportunity employment efforts comply with all applicable U.S. state and federal laws governing non-discrimination in employment.