Security L3 Administrator / Engineer (SOC, IAM, PAM)

Position Description
Security L3 Administrator / Engineer (SOC, IAM, PAM) Role Overview The Security L3 Administrator is responsible for advanced management, troubleshooting, and optimization of enterprise security infrastructure This includes Security Operations Center (SOC) monitoring, Identity & Access Management (IAM), and Privileged Access Management (PAM) solutions The role requires deep expertise in security technologies, strong analytical skills, and the ability to resolve complex issues independently while ensuring compliance and resilience against cyber threats Provide L3 support for escalated security incidents across SOC, IAM, and PAM platforms Manage and optimize SIEM tools (Splunk, QRadar, ArcSight, Sentinel) for threat detection and response Lead incident response, forensic analysis, and root cause investigations for critical security events Administer and enhance IAM solutions (Azure AD, Okta, SailPoint, Ping Identity) Manage PAM platforms (CyberArk, BeyondTrust, Thycotic) to secure privileged accounts and sessions Implement security policies, access controls, and compliance frameworks (ISO 27001, NIST, GDPR) Perform patching, upgrades, and configuration management across security systems Automate security workflows using PowerShell, Python, or Ansible Collaborate with infrastructure, application, and network teams to ensure secure operations Maintain documentation for incident handling, configurations, and security procedures Required Skills & Experience 712 years of experience in enterprise security administration with strong L3 expertise Handson experience with SOC operations, IAM platforms, and PAM solutions Strong knowledge of SIEM tools, log analysis, and threat detection methodologies Expertise in identity lifecycle management, single signon (SSO), and multifactor authentication (MFA) Experience with privileged account security, session monitoring, and vault management Familiarity with cloud security (AWS, Azure, GCP) and hybrid environments Proficiency in scripting and automation for security operations Solid understanding of network security, firewalls, IDS/IPS, and compliance standards Ability to lead critical incident resolution and mentor junior analysts Preferred Qualifications Certifications CISSP, CISM, CEH, CCSP, GIAC (SOC focus), CIMP/IAM certifications, CyberArk Certified Trustee Experience with SOAR platforms (Splunk Phantom, Palo Alto Cortex XSOAR) Exposure to Zero Trust frameworks and cloud IAM/PAM integrations Knowledge of ITIL processes for incident, problem, and change management Your future duties and responsibilities Required Qualifications To Be Successful In This Role Together, as owners, lets turn meaningful insights into action Life at CGI is rooted in ownership, teamwork, respect and belonging Here, youll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life Thats why we call ourselves CGI Partners rather than employees We benefit from our collective success and actively shape our companys strategy and direction Your work creates value Youll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise Youll shape your career by joining a company built to grow and last Youll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons Come join our teamone of the largest IT and business consulting services firms in the world