IT Security Engineer

Key responsibilities will be as follows:

• Manage and operate CyberArk PAM solution components including Password Vault Server Central Policy Manager (CPM) and Privileged Session Manager (PSM)
• Implement and maintain password vaulting strategies for diverse secret types including AD service accounts API keys SSH certificates database credentials and application passwords
• Configure and optimize automated password rotation policies managing complex dependency executions
• Work with application teams to design and implement secure credential retrieval workflows using CyberArks credential providers including Central Credential Provider (CCP)
• Monitor and troubleshoot PAM operations ensuring 99.5% system availability and rapid incident resolution
• Collaborate with application teams infrastructure engineers and security architects to integrate PAM solutions into existing and new systems
• Document operational procedures
• Support compliance initiatives by maintaining audit trails and access logs for privileged account usage

Education Requirements:

• Bachelors degree in Computer Science Information Security Information Technology or related field

Experience Requirements:

• Overall 2-5 years of experience in cybersecurity systems administration or PAM technologies
• Minimum 2 years of hands-on experience with CyberArk PAM solution in production environments

Expertise/Required Skills:

• CyberArk PAM architecture and core components (Vault CPM PSM PVWA)
• Password vaulting methodologies and secret lifecycle management
• Automated password rotation configuration and dependency management
• CyberArk credential provider implementations (CCP API CP REST API integrations)
• Standard secret types management including AD/LDAP service accounts API keys and tokens for cloud and application services SSH certificates and private keys Database credentials application-specific credentials etc.

• Technical proficiency in:
  • CyberArk policy configuration and platform management
  • Dependency mapping and rotation impact analysis
  • PowerShell Python or similar scripting languages for automation
  • LDAP/Active Directory integration and authentication protocols

• Operational skills:
  • Incident response and troubleshooting for PAM-related issues
  • Change management processes for privileged access modifications
  • Strong analytical and problem-solving capabilities

  • Effective communication skills for technical documentation and cross-team collaboration

• Preferred/Nice-to-Have Skills:
  • Experience with CyberArk Secrets Manager for DevOps and cloud-native applications
  • Familiarity with CyberArk Endpoint Privilege Manager (EPM) solution
  • Basic experience in CyberArk infrastructure component installation and hardening procedures
  • Experience with cloud platforms (AWS Azure GCP) and their native secret management services
  • Windows Server and Linux system administration
  • Network security concepts and access control methodologies
  • Performance monitoring and capacity planning for PAM infrastructure
  • LDAP/Active Directory integration and authentication protocols