CyberArk Engineer

ASRC Federal•Quantico, VA

2d•Remote

About The Position

ASRC Federal is a leading government contractor furthering missions in space, public health and defense. As an Alaska Native owned corporation, our work helps secure an enduring future for our shareholders. Join our team and discover why we are a top veteran employer and Certified Great Place to Work™ ASRC Federal is actively hiring a CyberArk Engineer in support of our Defense Counterintelligence Security Agency (DCSA) program based out of Quantico VA. This is primarily a Telework position with a requirement to be onsite at least two (2) days a week or as needed at Quantico Marine Corps Base VA. Position Description: We are seeking a dedicated and experienced CyberArk Engineer to join our cybersecurity infrastructure team. The ideal candidate will specialize in Privileged Access Management (PAM) and will be responsible for the architecture, implementation, and maintenance of our CyberArk environment. This role is critical for protecting and managing the organization's privileged credentials and access, ensuring compliance with security policies, and mitigating risks associated with privileged accounts.

Requirements

Minimum of 5 years of hands-on experience with the CyberArk Privileged Access Security (PAS) suite in an enterprise environment.
Strong understanding of Privileged Access Management (PAM), identity and access management (IAM) principles, and security best practices.
Active Secret Clearance REQUIRED, eligible to be upgraded to TS/SCI.
Must meet 8570 certification requirements at the time of hire. IAT Level II (e.g., Security+ CE, CCNA Security, CySA+, GICSP, GSEC, SCCP or higher tiered 8570 certification.
Bachelor’s Degree, in Cybersecurity, Information Systems Management or a related field or an equivalent combination of military service and/or at least five (5) years of significant, relevant work experience.

Nice To Haves

CyberArk Defender
CyberArk Sentry
CyberArk Guardian

Responsibilities

PAM Architecture and Implementation: Design, deploy, and maintain the CyberArk PAS suite, including the Enterprise Password Vault (EPV), Privileged Session Manager (PSM), and Central Policy Manager (CPM).
Policy and Safe Management: Develop and implement policies for secure credential management, session monitoring, and access control. Manage the creation and administration of Safes and access workflows.
Account Onboarding and Integration: Lead the onboarding of privileged accounts into CyberArk, including servers, databases, network devices, and applications. Integrate CyberArk with enterprise systems like Active Directory, SIEM, and ticketing platforms.
Platform Operations and Maintenance: Ensure the health and operational stability of the CyberArk infrastructure, including component upgrades, patching, and performance tuning.
Privileged Session Monitoring: Act as a subject matter expert for privileged access, investigating and responding to security alerts from Privileged Threat Analytics (PTA), and reviewing privileged sessions for anomalous activity.
Collaboration and Support: Work closely with system administrators, application owners, and security teams to ensure proper implementation and use of PAM controls. Provide Tier 3 support for the CyberArk platform.
Documentation and Training: Create and maintain comprehensive documentation for the CyberArk architecture, configurations, and operational procedures. Provide training to end-users and support staff.
Stay Current: Stay up-to-date with the latest CyberArk features, PAM strategies, and emerging security threats to continuously enhance the organization's security posture.