PAM CyberArk Engineer

Job Title: PAM CyberArk Engineer

Duration: Long term

Location: Remote if in: IL TX FL GA MA MD MN NC NJ NY DC WI

SELLING POINTS: Privileged access management (PAM) CyberArk enterprise Vault EPV central policy manager CPM password vault web access PVWA PSM privileged session manager CyberArk AIM/CP automated secrets on premise hybrid and cloud infrastructure AWS PSM PSMP CPM 5 plus years 2 years AWS

This resource will support the Privileged Access Management (PAM) team responsible for the CyberArk Enterprise Password Vault (EPV) and privileged account management across the enterprise. This individual will work with the PAM team to design implement and automate new CyberArk Privileged Sessions Manager (PSM) and AIM features introduced to OCCs CyberArk environment. The position will include heavy interaction with Architecture PAM Platform Automation Cloud Automation and endusers for the duration of the privileged sessions management project.

Key Responsibilities:

• Support the installation and configuration of CyberArk Privileged Access Security (PAS) Solution (e.g. AIM EPV Central Policy Manager (CPM) Password Vault Web Access (PVWA) PSM Privileged Session Manager for secure shell (PSMP) etc.).
• Participate in all design sessions for PSM in multiple datacenters and private cloud and provide knowledge ofCyber Ark architecture and configurations.
• Help build session management capabilities using CyberArk PSM and PSMP leveraging knowledge of CyberArk features and capabilities.
• Support ability to maintain development preproduction and production CyberArk environments.
• Assist in building and maintaining secure integrations with CyberArk AIM/CP for automated secrets retrieval between applications.
• Assist with implementing outofthebox or custom PSM plugins that include but not limited to remote desk protocol (RDP) secure shell (SSH) web based local clients and more. Systems requirements secured platforms disaster recovery capacity sizing and availability planning
• Support defining phased implementation approach (e.g. AWS production disaster recover backup datacenter) including priorities and phases for component implementations and secure connections configurations.
• Participate in the development of future strategy to change architecture for the vaults (e.g. distributed vaults onprem and in AWS disaster recovery)
• Work with PAM Team and Platform Automation Team to deploy session management in AWS.
• Assist with installing and configuring the relevant PSM servers into existing CyberArk production privileged access manager.
• Assist with testing troubleshooting and validating functionalities of PSM components.
• Assist with configuring the PSM health check service.
• Work with PAM Team to successfully deploy PSM/PSMP servers in AWS via Terraform pipeline. This will require an Ansible role for CyberArk PSM.
• Support development and deployment of CyberArk PSM/PSMP/CPM components in automated delivery to multiple datacenters and network zones.
• As directed draft Confluence documentation

SKILL AND EXPERIENCE REQUIRED:

• Extensive knowledge in CyberArk AIM and PSM functionality administration and architecture.
• 5 Years CyberArk experience at the engineering level
• 2 Years cloud services implementation in AWS
• Deep technical knowledge of CyberArk components functionality and requirements
• 2 Years implementing and integration of PSM across a variety of applications services and systems.
• Experience with Jira Powerbroker Ansible
• Certification in at least one or more of the following:
• AWS Solutions Architect or relevant experience
• CyberArk Defender and Sentry
• DevOps security or related