"Required Skills and Responsibilities:
•The CyberArk Security Specialist will assess, review, and recommend changes to CyberArk configuration and overall architecture to ensure adequacy of security controls and compliance with TIS standards and PIM/PAM benchmarks.
•The primary responsibilities include design, deployment, integration, administration, and daily operations of CyberArk Privileged Access System and password vault.
•Works closely with IT system administrators and application owners to support and enhance the existing Privilege Access Management (PAM) program.
•Performing Privileged identity and access management responsibilities should have in-depth PIM/PA conceptual knowledge.
•Good to have hands on experience in CyberArk migration from on prem to SAAS. Strong concept on scripting language will be added benefit.
Roles and Responsibilities:
•CyberArk and security specialist would need to perform any or all the following tasks
•Strong exposure for CyberArk Architecture and Deployment understanding‚· Operationally competent with CyberArk and able to translate technical issues to a business audience
•Experience in interfacing with Architects, Cloud Administrators, Developers, and System Administrators to implement and popularize CyberArk
•Experience in Implementation, configuration and administration of Enterprise password vault, and all relevant components
•Leads analysis of current state of the PAM program technological environment
•Recommend solutions for incremental improvements to PAM program
•Develop relationships to promote security awareness and PAM program best practices
•Responsible for Managing the Vault workload, Specifying Administration settings, Monitoring Vault services, managing vault licenses, Information recovery, HA vault cluster & disaster recovery drill (DR drill), Load Balancers, SIEM and monitoring solution (Radar, Splunk). Knowledge of various configuration files within and associated with PIM/PAM Solution
•Create password policies, managing safes and User Permission‚· Ensure the availability of Enterprise password vault on 24x7 basis
•Should be able handle Operational support team, responsible for Production and Operational support activities, monitoring, health checks and prepare operational activities documentation
•Should have good hands-on experience in Safe management, account management, client troubleshooting activities
•Preparing Technical Documentation such as Standard operating procedures (SOP), Network Diagram, DC-DR drill plan, Inventory and Capacity Report‚· Must have experience in Users, groups and LDAP integration, Access control, MFA etc.
•Experience integrating PAM solutions with multiple platforms including Windows, Unix, database platforms, applications, custom OS, network devices and security devices/solutions
•Should have experience in carrying out DB.