Job Description

We are M&G Global Services Private Limited (formerly known as 10FA India Private Limited, and prior to that Prudential Global Services Private Limited). We are a fully owned subsidiary of the M&G plc group of companies, operating as a Global Capability Centre providing a range of value adding services to the Group since 2003. At M&G our purpose is to give everyone real confidence to put their money to work. As an international savings and investments business with roots stretching back more than 170 years, we offer a range of financial products and services through Asset Management, Life and Wealth. All three operating segments work together to deliver attractive financial outcomes for our clients, and superior shareholder returns. M&G Global Services has rapidly transformed itself into a powerhouse of capability that is playing an important role in M&G plc’s ambition to be the best loved and most successful savings and investments company in the world. Our diversified service offerings extending from Digital Services (Digital Engineering, AI, Advanced Analytics, RPA, and BI & Insights), Business Transformation, Management Consulting & Strategy, Finance, Actuarial, Quants, Research, Information Technology, Customer Service, Risk & Compliance and Audit provide our people with exciting career growth opportunities. Through our behaviours of telling it like it is, owning it now, and moving it forward together with care and integrity; we are creating an exceptional place to work for exceptional talent. CyberArk Administration: Configure, manage, and maintain CyberArk components such as the Vault, Password Vault Web Access (PVWA), Privileged Session Manager (PSM), Privileged Session Manager Proxy (PSMP), Central Policy Manager (CPM), Application Identity Manager (AIM), Application Access Manager (AAM), and Secure Web Sessions (SWS). PAM Operations: Implement and maintain privileged access control policies, workflows, and automation to secure privileged accounts. Privileged Account Lifecycle: Manage the onboarding, offboarding, and rotation of privileged accounts, ensuring compliance with security policies and minimising exposure to risk. Incident Response & Monitoring: Monitor privileged account usage for unusual or unauthorised activities, respond to security incidents, and escalate issues when needed. Integration with IAM & Security Tools: Collaborate with the Identity and Access (IAM) team and security operations to integrate CyberArk with other tools, applications, and platforms Leading and Managing the PAM Operations Team: As the Team Lead, you will be responsible for overseeing the daily operations of the PAM (Privileged Access Management) team. This includes providing guidance, support, and mentorship to team members, ensuring that they have the resources and training needed to perform their duties effectively. You will also be responsible for setting performance goals, conducting regular performance reviews, and fostering a collaborative and high-performing team environment. Arranging Shift and On-Call Rotas: You will be tasked with organising and managing the shift schedules and on-call rotas to ensure that there is adequate service coverage at all times. This involves coordinating with team members to create a fair and balanced schedule that meets the operational needs of the organisation while considering the well-being and work-life balance of the team. You will also be responsible for ensuring that on-call support is available for any critical, high, and medium service incidents that may occur outside of regular operating hours Additional Responsibilities Automation & Scripting: Use automation and scripting (e.g. PowerShell) to streamline PAM processes, improve operational efficiency, and enhance security controls. Audit & Compliance: Ensure all privileged access activities comply with internal policies and external regulatory standards. Conduct regular audits and reporting to demonstrate compliance. Training & User Support: Provide training to internal users on CyberArk tools and PAM best practices, offering ongoing support for troubleshooting and user queries. Documentation: Maintain accurate technical documentation, including PAM policies, configurations, procedures, and incident response protocols. Security Awareness: Stay current on security best practices, threat landscapes, and PAM trends to continuously improve the security posture of the organisation. Collaboration: Work closely with IT, cybersecurity, and compliance teams to ensure the alignment of PAM initiatives with broader security and business objectives. Key Stakeholder Management Internal Enterprise Security & Privacy BAU team Enterprise IT M&G business Risk & Internal Audit External External Audit Software Vendor Knowledge & Skills Knowledge, Skills, Experience & Educational Qualification CyberArk Expertise: In-depth knowledge of CyberArk PAM solutions, including the Vault, Password Vault Web Access (PVWA), Privileged Session Manager (PSM), Privileged Session Manager Proxy (PSMP), Central Policy Manager (CPM), Application Identity Manager (AIM), Application Access Manager (AAM), and Secure Web Sessions (SWS). Strong understanding of best practices for privileged access management. IAM & Access Control: Familiarity with Identity and Access Management (IAM) principles and controls models (e.g. RBAC, ABAC). Scripting & Automation: Proficiency in scripting languages such as PowerShell, Python, or other relevant languages for task automation and PAM integration. Security Frameworks & Compliance: Knowledge of relevant security frameworks (NIST, ISO 27001) and industry compliance requirements (e.g. AAF, SOX). Problem-Solving & Analytical Thinking: Strong troubleshooting and analytical skills for identifying security risks and implementing effective solutions. Communication Skills: Excellent communication skills, with the ability to explain complex security concepts to both technical and non-technical stakeholders. Attention to Detail: Strong attention to detail, particularly when managing privileged accounts and ensuring compliance with security policies. Strong understanding of authentication protocols, APIs, and integration patterns. Experience 10+ years of experience in cybersecurity, with at least 3 years of hands-on experience in Privileged Access Management (PAM), with a focus on CyberArk. Proven experience in administering and maintaining PAM tools in a complex IT environment. Familiarity with Cloud Security, virtualisation technologies, and their impact on privileged access controls is a plus. Relevant Qualifications A degree in Computer Science, Information Security, or a related field. Professional certifications such as CISSP, CISA, CompTIA Security+ are preferred. CyberArk certifications (Defender, Sentry, or Guardian) are highly desirable. M&G Behaviours relevant to all roles: Tell it like it is: Respectfully speaking up to create better ways forward – both direct and empathetic. Own it now: Putting your name on things with confidence to drive progress and result quickly. Move it forward together: Forming cross-functional teams to seize the right opportunities and solve real problems. …. with care and integrity. Diversity & Inclusion is vital to the success of our business: M&G is an inclusive employer. Enterprise Security and Technology is deeply committed to leading the way for M&G in celebrating diverse approaches and points of view; we believe that diversity drives innovation. We are building a culture where difference is valued and a workforce that is more representative of world, we live in. Therefore, we value applications from candidates of all races, religions, gender identifications, abilities, and sexual orientation. We have a diverse workforce and an inclusive culture at M&G Global Services, regardless of gender, ethnicity, age, sexual orientation, nationality, disability or long term condition, we are looking to attract, promote and retain exceptional people. We also welcome those who take part in military service and those returning from career breaks. Show more Show less