Privileged Access Engineer

About The Position

Requirements

• Hands-on experience implementing CyberArk Privilege Cloud solutions, including Core PAS, Endpoint Privilege Manager (EPM), Conjur, Secure Web Session (SWS) and Secure Infrastructure Access (SIA).
• Proven expertise in integrating CyberArk with Active Directory, major cloud platforms (AWS, Azure, GCP), and DevOps tools for seamless privileged access management.
• Experience with Microsoft Windows Server, Solaris, and Red Hat Enterprise Linux environments, PowerShell scripting and API integration for automating administrative tasks and streamlining system operations.
• Solid experience with Multi-Factor Authentication (MFA) and Single Sign-On (SSO) technologies.
• Familiarity with SIEM & ServiceNow integration to enhance security monitoring and incident response.
• Strong infrastructure background, preferably within AWS, Azure, or GCP environments.
• Foundational knowledge of network architecture, including firewalls, DNS, whitelisting, and general networking principles.
• Excellent communication skills, with the ability to explain complex architectural concepts and technical issues to both business and technical audiences.
• Strong analytical and problem-solving abilities, capable of translating intricate requirements into effective PAM solutions that drive business value.

Responsibilities

• Design, implement, and manage CyberArk Privileged Cloud solution to secure privileged accounts and sensitive credentials across the enterprise.
• Lead the installation, configuration, and maintenance of CyberArk privileged Cloud components including Vault, PAS, PVWA, CPM, PSM, and PTA.
• Monitor and maintain daily operations of PAM systems to ensure high availability, optimal performance, and robust security of privileged access.
• Oversee the full lifecycle management of privileged accounts—provisioning, deprovisioning, credential rotation, and auditing—across platforms such as CyberArk Privilege Cloud, Microsoft Entra ID, and SailPoint Identity Security Cloud (ISC).
• Conduct regular privileged access reviews, ensuring strict adherence to the principle of least privilege and compliance requirements.
• Investigate and respond to security incidents or anomalies related to privileged access, working closely with the incident response team for swift resolution and root cause analysis.
• Partner with IT and application teams to integrate PAM solutions seamlessly with critical enterprise systems and tools.
• Develop and enforce policies governing privileged access in line with security frameworks and compliance standards.
• Manage patching, upgrades, and troubleshooting of all CyberArk components, ensuring a secure and stable environment.
• Provide technical expertise, guidance, and training to internal teams and end-users on best practices in identity and access management.
• Perform regular audits and generate detailed reports on privileged account usage, policy violations, and compliance status.
• Identify and resolve issues related to authentication, access controls, and application integration within the broader identity ecosystem.
• Maintain comprehensive documentation of configurations, processes, and operational best practices across all supported identity platforms.

Benefits

• Personal and professional development opportunities
• Hybrid working
• Purchase leave scheme
• Gender neutral 16 weeks paid parental leave
• Super Contribution Continuation for 12 Months of parental leave
• Linkedin Learning
• Income Protection Insurance
• Rest Excellence awards (peer recognition awards based on Rest’s values and behaviours)
• Rest Stops - meeting free breaks