Identity and Access Management (IAM) Engineer - CyberArk

About The Position

Requirements

• Bachelor's degree and six (6) years of experience in a related field
• Advanced understanding of UNIX security, as it relates to user access and provisioning
• Experience with Agile methodology and SDLC concepts/tools (Git, Atlassian stack)
• Experience with Linux/Unix, Windows, scripting (with programming languages such as Bash, PowerShell, or Perl), SQL, LDAP, and web services
• Experience with one or more programming languages such as Java, C#, C/C++, Python, or JavaScript
• Experience with role-based access controls and configuring automated provisioning and deprovisioning
• Experience with SailPoint (version 7.0 or later) or another IGA/IAM platform
• Recognized security industry certifications (CISSP, CIAM, etc.)
• Technical experience in systems integration or software engineering of identity and access management (IAM) solutions (such as BeyondTrust, CyberArk, AWS, Duo, OIM, Ping Identity, RadiantLogic, SailPoint, Okta, Active Directory, RACF)
• Demonstrated ability to multi-task, to be self-initiated, and work independently
• Excellent customer service and interpersonal skills
• Excellent time management skills
• Excellent organizational, research, analytical and/or problem-solving skills to evaluate situations, make recommendations, and take effective action
• Knowledge and skill in technical problem resolution
• Strong attention to detail and outstanding analytical skills
• Strong written and verbal communication skills

Nice To Haves

• Proven hands-on experience with CyberArk components, including PVWA, CPM, PSM, CCP, SIA / DPA.
• Demonstrated ability to onboard and manage privileged accounts across Windows, Linux, database, and cloud (Azure, AWS) platforms.
• Expertise in CyberArk platform management, including safe design, policy configuration, account discovery, and credential rotation.
• Strong understanding of Privileged Access Management best practices, risk reduction strategies, and regulatory requirements (e.g., SOX, PCI, HIPAA).
• Experience supporting or leading CyberArk upgrades, DR/HA configurations, and performance tuning in enterprise environments.
• In addition to the above, the ideal candidate would have experience with HashiCorp Vault

Responsibilities

• Designs, develops, tests, implements, and integrates Identity and Access Management (IAM) systems and solutions
• Ensures that solutions protect information resources against unauthorized use, inappropriate degrees of access, disclosure, damage and/or loss
• Analyzes and maintains data to ensure projects deliver on time
• Ensures the maintenance, patching, operating, and monitoring of IAM systems
• Supports and resolves system incidents, problems and changes
• Designs and implements reusable strategies, decisions, service components, libraries and frameworks to support enterprise-level IAM services
• Onboards new applications and creates custom workflows, rules, and reports based on business requirements
• Creates and analyzes documentation of process, guidelines, standards, technical specifications, as well as drawing network & system architecture diagrams
• Leverages bash scripting to maintain the night processing script
• Meets and encourages project teams to communicate project status, development issues/roadblocks, and requirements feasibility

Benefits

• Paid Vacation/Sick Time
• 401K with Company Match
• Medical, Dental and Vision Benefits
• Disability Benefits
• Health Savings Account
• Flexible Spending Account
• Life Insurance
• Parental Leave
• Employee Assistance Program
• Associate Volunteer Program