PAM Engineer
1 month ago
Somerset, United States
Rutgers
Full time
Rutgers, The State University of New Jersey, is seeking a Systems Programmer/Admin IV PAM Engineer for the Office of Information Technology (OIT).Identity and Access Management (IdM) is a program under the OIT Enterprise Applications and Services (EAS). The System Programmer/Administrator IV reports to the IdM OIT Director serves as a highly skilled resource to help promote and facilitate the implementation of an enterprise-wide PAM solution. The senior PAM engineer will be responsible for leading and planning the design, implementation, engineering, and training IT resources to manage the Privileged Access Management (PAM) suite within the OIT organization. The individual will act as the PAM subject matter expert (preferably familiar with CyberArk), working with the Identity management (IdM), internet security organization (ISO), Security Operation Center (SOC), leading teams, providing strategic guidance, and architectural leadership to ensure the security and integrity of critical systems and data.
Among the key duties of this position are the following:
- Plans, leads, develops and deploys PAM solution in accordance with industry best practices and organizational requirements.
- Builds and designs a privilege access management training plan for the identity and access management, SoC and IT operation teams.
- Drives planning and execution of the PAM use cases, roadmaps and technology enhancements.
- Prioritizes PAM capabilities based on the Rutgers security and business requirements.
- Leads enterprise-wide PAM deployments, integrating the PAM suite with multiple platforms and technologies. Implement just in-time and just-enough privilege.
- Develops, engineers and maintains the security architecture for privileged access management across the IT organization and for the Enterprise.
- Collaborates with Rutgers IT, security teams, and business units to understand their needs and incorporate them into the privileged access strategy.
- Works on CyberArk tool discovery and audit scanner which automatically discovers and analyses any privileged and nonprivileged accounts in the Active Directory environment and other platforms (Unix/Linux, Data Base, Azure, Network devices, ServiceNow, DevOps, etc..)
- Configures and maintains CyberArk components including Enterprise Password Vault, Central Policy Manager, Privileged Session Manager, Privilege Elevation and Delegation Management and Application Identity Manager.
- Serves as a PAM project champion working initially with a CyberArk consultant in the initial phase of the project.
Requirements:
- Bachelor s degree in Computer Science, Information system.
- Plus a minimum of seven (7) years experience within IT.
- Equivalent education, experience and/or training may be substituted for the degree requirements.
- Good understanding of administration, configuration and troubleshooting on PAM modules: Enterprise Password Vault (EPV), Password Vault Web Access (PVWA), Central Policy Manager (CPM), Privileged Session Manager (PSM), Privileged Session Management Proxy (PSMP), Privileged Threat Analytics (PTA).
- Experience with (Windows desktops, and Servers, RHEL, Solaris).
- Strong Identity and access management skills (SSO,MFA, SAML,IGA, LDAP, AD, etc.).
- Work independently with minimum subversions.
- Strong Communication skills.
Preferred Qualifications:
- 3- 5 years of experience in PAM solutions with CyberArk.
- Experience in Higher Ed Domain.
- CyberArk Certification.