Job Description

Responsibilities

• Operation of the Privileged Access Management (PAM) technologies, including accounts management, secrets management, and software and systems patching.
• Lead projects to develop and deliver new security features and/or software updates.
• Work with peers and stakeholders to implement and automate processes for administration and integration with external services.
• Contribute to PAM Security Strategy, including discovery, gap analysis, onboarding, and contributing to short to long term delivery of services and service improvements.
• Design, configure, and maintain PAM solutions for AIX, RHEL, Windows, and Mainframe systems.
• Integrate the PAM solution with various technologies such as Service Now, Compute hosting, IGA, SIEM, and other solutions.
• Provide security consultation on internal projects focusing on business needs, data transmission and identity security best practices.
• Author and maintain documentation procedures, inventories, and diagrams for PAM systems and processes.
• Monitor and respond to capacity and performance needs of the PAM infrastructure.
• Provide regular reports to leadership regarding security, capacity, usage, and licensing.
• Provide rotational on-call support for production PAM infrastructure systems and processes.

Qualifications

• Bachelor's Degree in Information Technology, Computer Science or other related fields.
• Industry certifications in cyber security or identity security attesting to broad knowledge of security best practices and design.
• 5-7+ years administering and maintaining Privileged Access Management (PAM) solutions, such as CyberArk, BeyondTrust, or Delinea.
• Experience working in large security access system upgrades/projects using the Scaled Agile Framework (SAFe), Scrum or Kanban.
• Significant experience working in a large IT organization with responsibility for supporting the technology and processes in the Privileged Access Management domain and controls program, preferably in a financial services organization.
• Considerable experience with Identity and Access Management vendors like Microsoft, CyberArk, Saviynt, ServiceNow, RSA, etc.
• Significant experience in working with all levels of staff, management, stakeholders, and vendors.
• Significant experience administering tier zero identity infrastructure that provides AAA services such as Active Directory, Azure Active Directory, PKI, Federation Services, and RSA.
• Advanced verbal and written communication skills.
• Advanced research, analytical, and problem-solving skills.
• Effective in producing desired results and achieving goals and objectives.
• Practical skill presenting findings, conclusions, alternatives, and information clearly and concisely.
• Experience in developing automated solutions and processes using PowerShell for Windows and BASH for UNIX/Linux.
• Demonstrates an understanding of how PAM integrates with common resources such as Windows, Linux/UNIX, VMWare, Azure, SQL/Oracle/DB2 database systems, Network appliances, and Mainframe.
• Familiar with change control processes (Production Discipline) to ensure up time and business continuity.

Other qualifications:

• CyberArk Certifications (Defender, Sentry, Guardian) certs advance from left to right.
• SOLID Experience in building and deploying PSM & CPM connectors.
• Scripting background for automation and Ansible (preferably doesn't rely solely on AI or Google).
• Experience with Credential Providers (AAM and CCP) Setup, Deployment, Support, Use.
• PTA experience (nice to have).
• Physical Server and OS platform expertise (nice to have).

CC Pace is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. We do not discriminate on the basis of race, color, religion, sex, national origin, age, disability, genetic information, or any other protected characteristic under federal, state, or local laws.

CC Pace are committed to employing only candidates who are legally authorized to work in the United States. For us to comply with the Immigration Reform and Control Act of 1986, all new employees, as a condition of employment, must complete the Employment Eligibility Verification Form I-9 and provide documentation that establishes identity and authorization to work. E-Verify will be used for employment verification as part of your onboarding process.

CC Pace values integrity throughout our hiring process. As part of our standard verification procedures, candidates will be asked to provide documentation confirming employment history, education, and work authorization.