CyberArk PAM Architect

Responsibilities:

1. Performs daily operations, support, and maintenance of all security technologies centric to Privileged Access related information security solutions
2. Support, implement, and Monitor compliance policies, procedures, and monitoring throughout the organization to ensure that the compliance program is effective and efficient in identifying, preventing, detecting, and correcting non-compliance with internal policies and regulatory requirements.
3. Provide guidance on Federal compliance matters including the development and oversight of compliance training programs.
4. Create and execute effective action plans in response to audit discoveries and compliance violations Regularly review and audit company procedures, practices, and documents to identify possible weaknesses or risk, updating if necessary.
5. Working with a project manager to organize client and internal kick-off meetings
6. Taking detailed notes during meetings and identifying project risks
7. Deployment of CyberArk Suite of products that include:
   1. Vault
   2. Privilege Session Manager
8. Work as Subject Matter Expert in Privileged Access Management engagements
9. Implementation & integration of PAM solutions (CyberArk, Password Auto Repository)
10. Assist with platform upgrades
11. Provide input into engineering and the architectural design of Access Control, User Entitlements, Application Credentials, User Access Policy Management, enhancing security related to Privileged Access Management, High availability and Disaster Resiliency
12. Keep documentation accurate with environment changes
13. Perform patching/fixes during off hours, may require weekend work for long outages
14. Perform disaster resiliency tests
15. Privilege Threat Analytics
16. Performing discovery audits and presenting findings to client management
17. Creation of project deliverables
18. Contributing the Center of Excellences (COE) improvement by making suggestions

Mandatory Skills

1. In-depth knowledge with at least 5+ years of proven engineering experience working in CyberArk suite of privileged identity management solutions.
2. Extensive knowledge in CyberArk PIM information security tools in a large, complex, multi-platform environment
3. Installation and configuration of CyberArk PAS solution, including the Enterprise Password Vault (EPV), Central Policy Manager (CPM), Password Vault Web Access (PVWA), Privileged Session Manager (PSM) and Privileged Session Manager Proxy (PSMP)
4. Analyze, design, and develop new features for the CyberArk PIM product family, focusing on expanding the capabilities.
5. Expertise in developing Custom connectors / plugins to various applications.
6. Experience in creating automation scripts using PACLI and REST API
7. Code/Customize the CyberArk product when needed and provide guidance.
8. Administer and engineer CyberArk for integrating privileged accounts for associates and services.
9. Manage Safes, Policies, roles, permissions to access various systems including windows servers, UNIX servers, Databases, Networking Devices, and applications.
10. Support and Administration of PIM tools
11. 2 plus years of experience with PAS V8.0 and higher
12. 2 plus years of experience creating platforms for the management of credentials on Unix, Windows, Database systems
13. 2 plus years of experience with PAM Operational tasks, to include Creating Safes, Defining Access Control, Policies or Platforms, User provisioning and entitlements, Managing Applications Credentials, Autoupload and User Access Policy Management

Preferred Qualifications:

1. Experience deploying Application Identity Manager components
2. Experience with Privileged Session Manager
3. Experience with Usage plugins
4. Experience with REST API for automated provisioning of Safes, Accounts and Access Control