Job Summary

Key Responsibilities

• Design, implement, and maintain enterprise wide Beyond PAM solutions ensuring secure management of privileged credentials and access
• Provide L3 technical support for complex PAM-related incidents and problems within the infrastructure environment
• Develop and enforce PAM policies, procedures, and standards aligned with industry best practices and compliance requirements
• Manage the full lifecycle of privileged accounts, including provisioning, certification, and deprovisioning
• Implement and optimize PAM tools for session recording, credential vaulting, and automated password rotation
• Operation experience of Thales MFA and token management
• MFA Integration experience with ADFS for token management
• Beyond Trust password vault for saving complex password.
• Conduct regular security assessments and audits of privileged access controls
• Perform root cause analysis for security incidents related to privileged access
• Create and maintain documentation for PAM architecture, configurations, and operational procedures
• Collaborate with cross-functional teams to integrate PAM solutions with existing infrastructure and security tools
• Provide mentorship to junior team members on PAM best practices and troubleshooting techniques
• Work for security management in the domain and drive for compliance activities

Key Responsibilities

1. Provide Support For Cyberark Pam (Vault, Pvwa, Cpm & Psm) And Beyondtrust Privileged Identity By Resolving On-Call Escalations And Performing Root Cause Analysis To Identify And Mitigate Recurring Issues.
2. Manage And Maintain Privileged Access Solutions Using Dellone Tpam And Netiq Pam, Ensuring Compliance With Quality Standards And Regulatory Requirements.
3. Conduct Updates And Management Of The Knowledge Base, Contributing To Continuous Improvement Through Documentation Of Solutions And Best Practices.
4. Train And Mentor New Team Members And Analysts On Pam Tools And Processes, Enhancing Team Capabilities And Knowledge Sharing.
5. Independently Resolve Support Tickets Within Agreed Slas, Ensuring Timely Responses And Effective Solutions To Enhance Customer Experience And Satisfaction.
6. Strive For First Call Resolution And Minimize Case Reopens By Applying Strong Analytical Skills And Technical Expertise In Pam Tools And Rest Apis.

Skill Requirements

1

Preferred Qualifications

• Relevant certifications such as CISSP, CISM, Beyond trust
• Experience with DevSecOps practices and tools
• Familiarity with cloud security and PAM solutions for cloud environments (AWS, Azure, GCP)
• Experience with implementing Just-In-Time (JIT) and Zero Trust access models
• Knowledge of threat detection and incident response processes
• Experience with automation and orchestration tools for security operations

Other Requirements

• PAM Platforms: CyberArk, BeyondTrust, HashiCorp Vault, Thycotic Secret Server
• Operating Systems: Windows Server, Linux (various distributions)
• Directory Services: Active Directory, LDAP
• Authentication: SAML, OAuth, MFA, PKI
• Networking: TCP/IP, firewalls, routing, VPN technologies
• Scripting: PowerShell, Python, Bash
• SIEM Tools: Splunk, QRadar, ArcSight or similar
• Infrastructure as Code: Terraform, Ansible