SNHU's Global Education Movement

Senior Privileged Access Management Engineer

SNHU's Global Education Movement

full-time

Posted on:

Origin:  • 🇺🇸 United States • Alabama, Arizona, Florida, Hawaii, Idaho, Iowa, Kansas, Kentucky, Louisiana

Visit company website
AI Apply
Apply

Salary

💰 $100,560 - $160,926 per year

Job Level

Senior

Tech Stack

AWSAzureCloudGoogle Cloud PlatformLinuxMacOSPythonVault

About the role

  • Designs, administers, and maintains Southern New Hampshire University's Privileged Access Management (PAM) solution(s) with a specific focus on the enterprise CyberArk service.
  • Help align PAM practices with industry standards and controls such as CMMC, PCI-DSS, and NIST.
  • Secure privileged access to SNHU's ecosystem which includes hybrid on-prem and cloud hosted services.
  • Mentors less experienced resources who perform and support IAM and PAM activities within IT and across operations.
  • Participates in administrating and supporting other services of SNHU's IAM ecosystem including SailPoint IdentityNow, Entra ID, Active Directory, and Entra Federated Authentication Services (SSO).
  • Develop and implement PAM solutions, including CyberArk Privileged Access Manager (PASM), Endpoint Privilege Manager (PEDM), Secure Cloud Access (CIEM), and Secrets Hub.
  • Manage the daily operations of PAM systems, including vault architecture, account onboarding, and component maintenance.
  • Build integrations with other systems using APIs (e.g., CyberArk's API, REST APIs), and automating tasks using scripting (e.g., PowerShell).
  • Ensure PAM solutions follow security frameworks, policies, and industry regulations (NIST, CMMC, PCI-DSS).
  • Resolve complex technical issues, providing support to users, and participating in after-hours and on-call support.
  • Provide T3/escalation level support including incident response, troubleshooting, root cause analysis, and problem resolution.
  • Guide junior engineers, contributing to team knowledge, and potentially leading technical implementations.
  • Contribute to the development of PAM strategies and roadmaps, including zero-trust models.
  • Work with multiple teams (security, infrastructure, application teams) to integrate PAM solutions and ensure their effectiveness.
  • Develop high-quality system configuration and process design documentation, knowledge base articles, troubleshooting guides, operating procedures, application integration documentation and other materials.
  • Lead in the creation and management of reporting related to the PAM services.
  • Administration and troubleshooting of IAM services (SailPoint ISC, Entra ID) Integrations with upstream and downstream services and applications Develop roles, mapped to authorization models (RBAC, ABAC, PBAC) Development of IGA workflows for entitlement assignment Development of IGA access request flows Develop IGA certification workflows Perform business analysis activities (process mapping, requirements gathering, documentation maintenance).
  • Perform quality assurance and testing activities (test plan execution, documentation) to support IAM components.
  • Be a subject matter expert for IAM technologies and processes on projects with identity components.
  • Work with DBAs, application administrators, developers, testers, and others to troubleshoot issues, address design challenges, and improve performance.

Requirements

  • 5+ years of experience managing PAM services.
  • 3 years with hands-on experience with the CyberArk suite of products (including PASM, EPM for Windows/Linux/MacOS, and Secure Cloud Access (CIEM).
  • Professional Certification(s): CyberArk Certified Delivery Engineer (CDE) or CyberArk Certified Defender (CCD)
  • Experience with broader IAM principles, concepts, and experience with other IAM tools (e.g. SailPoint ISC, Microsoft EntraID).
  • Working knowledge of cloud platforms like Azure, AWS, and GCP for secrets and entitlement management.
  • Experience with Windows and Linux environments, Active Directory, Group Policy, and LDAP-based directory services.
  • Experience with scripting languages like PowerShell and Python for automating PAM tasks and integrating CyberArk with other systems.
  • Experience with ITIL processes (Change, Incident, Request, and Problem) management.
  • Experience with relevant security and compliance frameworks such as FERPA, PCI-DSS, NIST CSF, OWASP, CIS Top 20.
DPR Construction

Identity and Application Security Engineer

DPR Construction
Mid · Seniorfull-timeArizona, Florida, North Carolina · 🇺🇸 United States
Posted: 27 days agoSource: mydpr.wd5.myworkdayjobs.com
Cloud
ICF

Principal IT Asset Management Consultant

ICF
Leadfull-time$144k–$244k / yearVirginia · 🇺🇸 United States
Posted: 19 days agoSource: icf.wd5.myworkdayjobs.com
AWSAzureCloudERPGoogle Cloud PlatformITSM
Code Metal

IT Operations Manager

Code Metal
Mid · Seniorfull-timeMassachusetts · 🇺🇸 United States
Posted: 3 days agoSource: apply.workable.com
AWSAzureCloudGoogle Cloud Platform
Sinch

Technical Product Manager, AI

Sinch
Mid · Seniorfull-time🇸🇪 Sweden
Posted: 5 days agoSource: apply.workable.com
AWSAzureCloudGoogle Cloud PlatformGraphQL
CrowdStrike

Cloud Security Consultant

CrowdStrike
Mid · Seniorfull-time🇺🇸 United States
Posted: 26 days agoSource: crowdstrike.wd5.myworkdayjobs.com
AWSAzureCloudCyber SecurityGoogle Cloud PlatformPython