Senior CyberArk & RSA Engineer

Urgent role - Visa: - Exp range: 12 - 15+

Position Overview

We are seeking a Senior CyberArk & RSA Engineer responsible for the implementation, configuration, and ongoing support of our Privileged Access Management (PAM) infrastructure using CyberArk and RSA tools. This role will focus on securing privileged access, enforcing identity assurance, and ensuring compliance with security policies in a complex enterprise environment.

The ideal candidate will bring deep expertise in CyberArk administration, coupled with strong experience deploying and managing RSA authentication solutions for secure access across systems.Key Responsibilities

Responsibilities

• Deploy, configure, and maintain CyberArk PAM components (PVWA, CPM, PSM, Vault).
• Integrate CyberArk with enterprise systems, applications, and directories (e.g., Active Directory, LDAP).
• Onboard privileged accounts and manage credentials securely across platforms.
• Conduct periodic audits, access reviews, and health checks of the CyberArk environment.
• Monitor privileged access activity, investigate anomalies, and respond to security incidents.
• Support upgrades, patches, and enhancements to the CyberArk infrastructure.
• Create and maintain documentation for configurations, policies, and procedures.
• Administer, configure, and maintain Forescout CounterACT for network access control (NAC), device visibility, and policy enforcement across wired, wireless, and VPN environments
• Develop and implement Forescout policies and integrations with enterprise security tools such as SIEMs, firewalls, ISE, and endpoint management platforms to automate threat response and compliance
• Monitor, troubleshoot, and optimize Forescout operations, ensuring accurate device classification, up-to-date plugins/modules, and effective posture assessment for all connected assets. RSA Responsibilities
• Implement and manage RSA SecurID or RSA Identity Governance and Lifecycle (IGL) for multi-factor authentication and access control.
• Integrate RSA with enterprise systems to enhance secure login and identity assurance.
• Monitor RSA token deployments, troubleshoot authentication issues, and manage token lifecycle.
• Collaborate with IAM and security teams to define and enforce authentication policies.
• Maintain RSA system health, perform updates, and generate reports on authentication metrics and usage. General Security Responsibilities
• Collaborate with IT Security, Infrastructure, and Compliance teams to enforce privileged access and authentication standards.
• Assist with internal and external audits related to identity and access controls.
• Contribute to the development of IAM security architecture and roadmaps.
• Ensure adherence to NERC CIP, SOX, or other relevant regulatory frameworks (especially for EMS environments). Qualifications
• 4+ years of hands-on experience with CyberArk PAM administration.
• 3+ years of experience managing RSA SecurID or RSA IGL solutions.
• Strong knowledge of privileged access management, MFA, and identity governance best practices.
• Experience in integrating PAM and MFA tools with enterprise applications and systems.
• Familiarity with EMS or similar environments in the energy/utilities sector is a strong plus.
• Solid troubleshooting, scripting, and automation skills (e.g., PowerShell, REST APIs).
• Excellent communication skills and the ability to work effectively across teams. Preferred Certifications (not required but advantageous)
• CyberArk Defender / Sentry / Guardian
• RSA SecurID Certified Administrator / RSA IGL
• CISSP, CISM, or other security-related certifications