What are the responsibilities and job description for the PAM Engineer position at TechWish?
Responsibilities
- Operation of the Privileged Access Management (PAM) technologies, including accounts management, secrets management, and software and systems patching.
- Lead projects to develop and deliver new security features and or software updates.
- Work with peers and stakeholders to implement and automate processes for administration and integration with external services.
- Contribute to PAM Security Strategy, including discovery, gap analysis, onboarding, and contributing to short to long term delivery of services and service improvements.
- Design, configure, and maintain PAM solutions for AIX, RHEL, Windows, and Mainframe systems.
- Integrate the PAM solution with various technologies such as Service Now, Compute hosting, IGA, SIEM, other solutions
- Provide security consultation on internal projects focusing on business needs, data transmission and identity security best practices.
- Authoring and maintaining documentation procedures, inventories, and diagrams for PAM systems and processes.
- Monitors and responds to capacity and performance needs of the PAM infrastructure.
- Provides regular reports to leadership regarding security, capacity, usage, and licensing
- Provide rotational on-call support for production PAM infrastructure systems and processes.
- Bachelor's Degree in Information Technology, Computer Science or other related fields
- Industry certifications in cyber security or identity security attesting to broad knowledge of security best practices and design.
- 5-7 years administering and maintaining Privileged Access Management (PAM) solutions, such as CyberArk, BeyondTrust, or Delinea.
- Experience working in large security access system upgrades/projects using the Scaled Agile Framework (SAFe). Scrum or Kanban
- Significant experience working in a large IT organization with responsibility for supporting the technology and processes in the Privileged Access Management domain and controls program, preferably in a financial services organization
- Considerable experience with Identity and Access Management vendors like Microsoft, CyberArk, Saviynt, ServiceNow, RSA, etc.
- Significant experience in working with all levels of staff, management, stakeholders, and vendors.
- Significant experience administering tier zero identity infrastructure that provides AAA services such as Active Directory, Azure Active Directory, PKI, Federation Services, and RSA.
- Advanced verbal and written communication skills
- Advanced research, analytical, and problem-solving skills
- Effective in producing desired results and achieving goals and objectives
- Practical skill presenting findings, conclusions, alternatives, and information clearly and concisely
- Experience in developing automated solutions and processes using PowerShell for Windows and BASH for UNIX/Linux.
- Demonstrates an understanding of how PAM integrates with common resources such as Windows, Linux/UNIX, VMWare, Azure, SQL/Oracle/DB2 database systems, Network appliances, and Mainframe.
- Familiar with change control processes (Production Discipline) to ensure up time and business continuity
- CyberArk Certifications (Defender, Sentry, Client) certs advance from left to right
- SOLID Experience in building and deploying PSM & CPM connectors
- Scripting background for automation and Ansible (preferably doesn’t rely solely on AI or Google)
- Experience with Credential Providers (AAM and CCP) Setup, Deployment, Support, Use
- PTA experience (nice to have)
- Physical Server and OS platform expertise (nice to have)