Privileged Access Management (PAM) Engineer With Crowdstrike is a MUST | 100% Remote | W2/1099

Overview

Remote
Depends on Experience
Contract - W2
Contract - Independent
Contract - 12 Month(s)

Skills

Privileged Access Management
CrowdStrike Identity Protection.
CyberArk Privileged Cloud

Job Details

PAM Engineer

IMPORTANT: Crowdstrike is a MUST, any certifications are helpful

Location: Remote

Length: 6 Months

Privileged Access Management (PAM) Engineer

We are seeking a skilled and experienced Privileged Access Management (PAM) Engineer to join our security team. In this role, you will be a key player in designing, implementing, and maintaining our enterprise-wide privileged access security program. You will be responsible for administering the CyberArk Privileged Cloud platform, ensuring robust security controls, and serving as a technical trouble-shooter for complex access-related issues in a hybrid cloud environment.

The ideal candidate has a deep understanding of privileged access security best practices, strong technical troubleshooting skills across networks and applications, and a proven track record of managing enterprise-level PAM solutions.

Key Responsibilities

  • CyberArk Privileged Cloud Expertise:Administer and configure the CyberArk Privileged Cloud platform, including managing user accounts and groups, configuring policies, and onboarding accounts and Safes. Gain a deep understanding of the platform's SaaS delivery model and core components.
  • Troubleshooting and Support:Serve as a subject matter expert for all privileged access issues. Troubleshoot complex network connectivity problems, authentication failures (SAML, OAuth, MFA), and remote access issues with PSM and CPM.
  • Technical Skills and Automation:Utilize scripting skills in PowerShell and Python to automate tasks and integrate CyberArk with other systems using its REST APIs and SDK. Analyze logs from CyberArk and other systems to perform incident response and root cause analysis.
  • Security and Compliance:Implement and enforce privileged access security best practices to meet compliance frameworks such as SOX, PCI-DSS, and NIST. Participate in risk assessments and contribute to the implementation of zero trust security principles.
  • Collaboration and Communication:Work closely with security, infrastructure, and application teams to address privileged access challenges. Communicate complex technical concepts to non-technical stakeholders and provide training to end-users on secure access procedures.
  • CrowdStrike Identity Protection:Serve as a resource with a strong background in CrowdStrike Identity Protection.
  • Tier 2 Privilege Access Discovery:Conduct insight and discovery of privileged access across Tier 2 environments, including PCs, workstations, and AWS Workspaces.
  • Use Case Documentation and Implementation:Document use cases for admin access with recommended solutions and partner with IT teams for implementation of solutions such as printer drivers, software installs, and other administrative tasks.
  • Tier 2 Tiering Access Model:Implement a Tier 2 tiering access model that includes just-in-time (JIT) access via CrowdStrike Next Gen Identity and a risk-based request process that evaluates the risk of both users and devices.

Required Qualifications

Experience Level:

  • 5+ years of experience in cybersecurity or systems administration, with a focus on PAM.
  • 3+ years of hands-on experience with CyberArk Privileged Cloud(formerly CyberArk Cloud).
  • Proven experience as both a platform administrator and a technical trouble-shooter for privileged access issues.

Technical Core Requirements:

  • Deep understanding of Privileged Access Security architecture, including the core components of the CyberArk Identity Security Platform.
  • Proficiency in configuring and managing Cloud Entitlements Manager.
  • Strong networking fundamentals, including TCP/IP, firewall rules, and cloud networking (AWS, Azure, Google Cloud Platform).
  • Expertise in troubleshooting Active Directory integration, LDAP, and various authentication protocols (SAML, OAuth, MFA).

Scripting and Tools:

  • Proficiency in PowerShell for Windows environments.
  • Basic knowledge of Python or REST APIs for integrations.
  • Experience with log analysis, SIEM integration, and performance monitoring.

Preferred Qualifications

Certifications:

  • CyberArk Trusteeor higher certification.
  • Relevant cloud platform certifications (AWS, Azure, Google Cloud Platform).
  • Security certifications (CISSP, CISM, Security+).

Experience:

  • Experience with hybrid cloud and on-premises environments.
  • Background in enterprise identity and access management.
  • Previous experience with other privileged access management solutions.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.