PAM Operations CyberArk Operations L3

Job Description & Summary

• Design test deployupgradeconfigure andoperatemultiple instances of CyberArks Privileged Access Manager solution hosted on-premises and in the cloud

• Ability to work in a fast-paced environment with changing and shifting priorities

• Ability to work non-standard hours including weekendsand/or after business hoursasrequired

• Participates in a shared on-call shift rotation

• Participate in Program Increment (PI) workshops as part of the Enterprise Identity Agile Release Train (ART)

• Adheres to operational and service level agreements for the teams support/assignment queue in ServiceNow

• Identifyand decommission underutilizedinfrastructure cloud resources configurations policies etc. Likewiseidentifywhere capacity/growth isrequiredto support the service

• Supportthe buildingmigrationand replacement of CyberArkcomponentservers(inclusive of Vaults)

• Configure Vault integrationwith HSM partitions

• Joins troubleshooting and major incident calls asrequired

• Review system and application logs toidentifyerrors and issues

• Identifyand communicate non-standard or non-compliant configurations

• Opens and manages support cases on the CyberArk customer portal and bring to resolution

• Define and configure policies platforms safes and onboardedobjects/accounts

• Contribute to and refinehigh leveland detailed design documentation

• Quality reviewCyberArk infrastructure components deployments prior to entering service

• Define and configure monitoringscripts across infrastructure including configuration of alerts in Splunk

• Conduct and contribute toaudits of system configurations andidentifygapsfor remediation

• Adheres to ITSM processes (Change Incident Problemetc)

• Drafts and edits weekly end-user or service wide impact communications

• Migrates objects between different instances of CyberArk using established procedures and scripts

• Configure updatedroll-basedsecurity models within CyberArk to meet regionalcompliancerequirements

• Support adoption ofan agile DevOps approach to CyberArkcomponentand infrastructure deployment

• Followappropriatereleasemanagement practices fromDevelopmenttoProductionenvironments

• Completetrainingsrequiredtooperatein PwCoperational toolscloudand DevOpsplatforms

• Draft publish andmaintaincomprehensivedocumentationrequiredtodesigndeployconfigureandoperateCyberArks PAM solution

• Draft detailed implementationand backoutplansidentifydependencies and coordinate acrossmultiple teamsto implement complex changes

• Meticulouslyplanchangesthatminimizeoreliminateimpact to theCyberArkservice

• Review andunderstandrelease notes forCyberArks PAM solution

• Support the remediation ofmonthlyvulnerabilitiesacross CyberArk infrastructure

• Implementsecuritybulletinsprovided byCyberArk

• Supports the patching of physical vault server firmware/drivers and OS

• Request and replace certificates on CyberArk infrastructure prior toexpiration

• Lead by exampleandinspire those around you

• Possess superior organization skills

• Demonstrate the ability tomanage selfandbeindependent

• Be collaborative andateam player

• Demonstrate strong analysis criticalthinkingandproblem-solvingskills

• Compareand assess data acrossdifferent sourcesandmakeobservations from it

• Clearly communicate during meetings

• Articulateyourpoint of viewand ideas to improve processes

• Responsiveto emailschatsand requests

• Escalate issues earlybefore they become problems/blockers

• Possess clear and concise writing skills

• Ownership ofyourspace (projectstasks)

• Demonstrate a natural curiosity to understandPwCtechnologies and processesandresolveissues

• Makesabest effort to searchfor anduseallavailableresources( bases wikis other staff)at your disposal

• Inspectsanddeliversquality work

• Has a willingness toshare lessons learned andshareknowledge across the team

• Builds uponexpertisetowardsadvancing the teams goals and mission

• Differentiatesthemselfwithin theteambyestablishingabrandand is seen as dependable and trustworthy

• Deliverssustained impacted and value

• Onboardsand mentorsnewteam members

• Providesand requestsfeedback in real time

• Experienceindeploying upgradingconfiguringoperatingadministeringandmaintainingCyberArks Privileged Access Manager solution (full suite)

• University bachelors degree

• 4 yearscombinedexperiencein designing deployingupgradingconfiguring operating administering andmaintainingCyberArksPrivileged Access Managersolution

• Experience inconfiguringlogon sequencesCPMplug-insand PSM connection components

• Possesses a superior attention to details

• Possesses interpersonal skills (has an ability to interact and work with customers directly)

• Experience in usingtheCyberArk API PACLI Export Vault Data utilityReportscommunity developedPASReportertoolandpsPAS(PowerShell Module for the API)

• Understands authentication and authorization concepts including LDAP MFA Active Directory SAMLandRADIUS

• Understands Microsoft Active Directory groups group policyobjectsand service accounts

• Understands identity and access management (IdAM) concepts (i.e. identity system of truth user provisioning accounts entitlementsrolesaccess certifications segregation of duties)

• Knowledgeable of the Network OSI Layers

• Knowledge ofDNS

• Knowledge ofFirewall policies

• Understanding ofLoad Balancingand/orTraffic management

• Understanding ofCertificates

• Experience withMicrosoft Windows Server OS andusingdiagnostic tools (processmonitor event viewer debug)to troubleshoot

• Experience withMicrosoft IIS

• Knowledgeable ofSMTP

• KnowledgeableofNTP

• KnowledgeableofSyslog

• Familiar with ITIL concepts (i.e. incident request change problem configuration items)

We appreciate the interest shown by all candidates. However we wish to advise that only suitable candidates will be contacted.