TMF

TMF Group is a leading provider of administrative services, helping clients invest and operate safely around the world. As we’re a global company with 11,000+ colleagues based in over 125 offices across 87 jurisdictions, we actively seek out people with the talent and potential to flourish at TMF Group, whatever their background, and offer job opportunities to the broadest spectrum of people. Once on board we nurture and promote talented individuals, making sure that senior positions are open to all.

As a Senior Principal - Cybersecurity, you will be responsible for securing and managing privileged access across the enterprise. This role focuses on Privileged Identity Management (PIM) and Privileged Access Management (PAM) and Security Information and Event Management (SIEM) to protect against external threats, prevent unauthorized access, and enforce security controls. You will work closely with security, IT, and compliance teams to implement, optimize, and monitor privileged access policies in alignment with cybersecurity best practices.

• Privileged Access Security: Implement and manage PAM/PIM solutions (CyberArk, Beyond Trust, Thycotic, HashiCorp Vault, etc.) to ensure secure privileged account management.
• Outsider Threat Protection: Monitor and mitigate external threats targeting privileged accounts, including brute force attacks, credential theft, and privilege escalation.
• PAM/PIM Policy Enforcement: Develop and enforce privileged access policies, ensuring least privilege access, session monitoring, and just-in-time (JIT) access.
• Access Reviews & Compliance: Conduct regular privileged access audits to ensure compliance with regulatory frameworks (ISO 27001, NIST, PCI-DSS, GDPR, etc.).
• Credential Vaulting & Session Monitoring: Secure privileged credentials and enforce session recording and monitoring to detect unauthorized activity.
• Threat Intelligence & Detection Rules (SIEM): Develop use cases, detection rules, and security policies to identify and mitigate privilege abuse and unauthorized access attempts.
• Threat Investigation & Incident Response: Support incident investigations involving privileged account misuse, external attacks, and unauthorized access attempts.
• Cloud & Hybrid Access Security: Manage privileged access for on-premise and cloud environments (AWS, Azure, GCP), ensuring secure identity and access management.
• Collaboration & Security Enhancements: Work with SOC, IT, and compliance teams to enhance privileged access security and integrate PAM/PIM solutions with security operations.

• Experience: 5-8 years in PAM/PIM, cybersecurity, or identity security.
• Certifications (Preferred): CyberArk Defender, BeyondTrust Certified Administrator, CEH, CISSP, or other relevant security certifications.
• Problem-Solving & Collaboration: Ability to analyze access risks, investigate security incidents, and optimize privileged access controls.
   

Key Knowledge and Experience  

• 5-8 years of experience in cybersecurity, identity security, or privileged access management.
• Hands-on experience with PAM/PIM solutions such as CyberArk, BeyondTrust, Thycotic, or HashiCorp Vault.
• Knowledge of privileged account security risks, credential theft techniques, and privilege escalation tactics.
• Experience in implementing and managing Just-in-Time (JIT) access, credential vaulting, and session monitoring.
• Understanding of risk-based authentication, MFA, and Zero Trust security models.
• Cloud security expertise in managing privileged access for AWS, Azure, and GCP environments.
• Familiarity with regulatory and compliance requirements (ISO 27001, PCI-DSS, NIST, GDPR, etc.).
• Strong analytical and communication skills to work across security, IT, and compliance teams.

Pathways for career development

• Work with colleagues and clients around the world on interesting and challenging work;
• We provide internal career opportunities so you can take your career further within TMF;
• Continuous development is supported through global learning opportunities from the TMF Business Academy.

Making an impact

• You’ll be helping us to make the world a simpler place to do business for our clients;
• Through our corporate social responsibility programme, you’ll also be making a difference in the communities where we work.

A supportive environment

• Strong feedback culture to help build an engaging workplace;
• Our inclusive work environment allows you to work from our offices around the world, as well as from home, helping you find the right work-life balance to perform at your best.

Other Benefits

• Anniversary & Birthday Leave policy
• Be part of One TMF
• Paternity & Adoption leaves
• Salary advance policy
• Work flexibility – Hybrid work model
• Talk about growth opportunities (we invest in talent)
• Well-being initiatives