Senior privileged access management engineer

Job Summary

As an IAM Systems Engineer you are part of a team that is responsible for design analysis evaluation testing debugging and implementation of Identity Access and Privileged Access Management applications in support of NetApps various functional areas. You will work closely with cross-functional teams to understand and address customer needs and develop implementation plans.

The Identity & Access Management group is part of NetApps Global Security function and is responsible for a wide range of applications technical expertise and security. This team is accountable for the core Identity and Access Management Infrastructure at NetApp. As a part of a team you will help to ensure that team objectives and project deadlines are met. The essential functions of the team include:
Create long-term strategy for the department and communicate it to team members and peers in other functional areas.
Plan design implement and lead application installation projects or operating process.
Analyze test and debug applications.
Develop IAM interfacing with corporate driven applications across functional areas such as Marketing Finance Manufacturing etc.
Plan conduct and direct the analysis of business problems to be solved with automated systems. May work with technical teams including Business Systems Analysts to understand functional business needs and jointly develop automated solutions.
Write maintain and implement systems specifications and corresponding maintenance documentation.
Ensure client satisfaction with technical solutions.
Reporting to customers and management on status resources needs and projected outcomes.
Mentorship and training of IAM Engineers and developers by more senior members of the team on processes and tools.
Project management.

Job Requirements

Strong knowledge of directory service and access management solutions with a focus on Microsoft Entra ID Azure B2C Active Directory LDAP RedHat Directory and other
Privileged Access Management via CyberArk and Secrets Management via CyberArk Conjur - on-premises and SaaS
Configuring safes platforms password policies and other functions
Automated secret retrieval via AIM Conjur
Experience in design development and implementation of Privileged Access Management solution preferably CyberArk/Conjur.
Strong knowledge of CyberArk solutions including PAS Privileged Cloud and other related modules such as CyberArk Identity SCA SIA.
Experience in planning and execution of upgrade and migration activities. On-prem to SaaS migration will be an added advantage.
Knowledge of custom PSM Connectors/CPM Plugins.
Experience in managing secrets (CP CCP and Conjur)
Integrate CyberArk/Conjur with enterprise systems including Active Directory LDAP cloud identity providers (AWS/Azure) and DevOps toolchains.
Develop Conjur policies and manage secrets lifecycles including policy automation and access controls.
Experience in securing containerized workloads and microservices by replacing hard-coded secrets with dynamic secrets retrieval.
Experience with multiple of the following is required -
Windows and Linux administration skills
Website web applications databases and SQL technologies
Programming languages such as Java and C#
Shell scripting and/or PowerShell Bash Python
Collaboration and source control tools
Modern cloud CI/CD solutions and SCM tools (e.g. Jenkins Ansible Git)
Experience with container technologies (e.g. Kubernetes Docker)
Cloud Platform Experience (AWS GCP Azure)
Technology and security aspects of network and application security infrastructure hardening security baselines web server and database security
Federal IT and Cloud security frameworks including CCM FedRAMP NIST 800-53 SOC 2 ISO
Developing technical specifications from business requirements
Modern technical management experience (Scrum/Kanban/agile)

Education

A minimum of 8 years of experience is required; 9 to 11 years of experience is preferred.
A Bachelor of Sciences Degree in Electrical Engineering Computer Science or other related field is required; or equivalent experience.
Demonstrated ability to have completed multiple complex technical projects