The Identity (PAM) Engineer will play a crucial role in enhancing our identity and access management (IAM) program, with a specific focus on privileged account management. We are seeking a dedicated professional with expertise in PAM solutions, including CyberArk, Okta, and Active Directory. The ideal candidate will collaborate with peers to ensure secure and efficient management of privileged accounts across our systems and applications.
Essential Functions:
Collaborate with the identity team on the design, construction, implementation, and daily management of initiatives related to privileged account management solutions.
Utilize deep understanding of PAM, security, and industry-specific regulatory practices to enhance our PAM program.
Work closely with IT system administrators and application owners to support and enhance existing PAM processes.
Administer and maintain the CyberArk Privileged Access System, password vault, and integrations.
Collaborate with IAM teams to ensure compliance with internal policies and standards.
Review access logs, monitor user activity, and identify anomalies or security risks related to privileged accounts.
Participate in IT audits and respond to audit findings related to PAM processes.
Develop and maintain audit documentation, including policies, procedures, and evidence of compliance.
Competencies:
Minimum 3 years of hands-on administration experience with PAM solutions, with emphasis on CyberArk.
Experience building custom SSO integrations (SAML, OAuth, WS-FED/WS-TRUST) in PAM systems.
Deep knowledge of principal IAM products, including CyberArk, Okta, and Active Directory.
Technical expertise to work as a developer in an implementation capacity.
Strong understanding of access controls, identity governance, and security best practices.
Familiarity with Cloud, SSO, and MFA.
Excellent documentation skills for clients (business and technical requirements, support guides, etc.).
Education and Certification:
A Bachelor s degree in identity and access management, cybersecurity, information technology, or related field is usually preferred. However, applicants with a combination of relevant professional experience, education, and professional PAM certification will also be considered for the position.
Relevant certifications may include:
Certified Information Systems Security Professional (CISSP)
Certified Information Systems Auditor (CISA)
CyberArk certifications
