Privileged Access Management Engineer
Role details
Job location
Tech stack
Job description
At AIG, technology is at the heart of everything we do, from underwriting risks to processing claims. The Information Technology team equips our colleagues with the latest tools to complete their work efficiently and with the highest standards of excellence. The team is responsible for shielding the company's systems from security risks, while designing technology strategies that enable AIG's businesses to achieve their goals. AIG's Information Technology functions include enterprise architecture, software and systems engineering, cybersecurity, and technology risk and compliance.
About the role
The Privileged Access Management team is situated within the AIG Global Identity and Access Management team. The team is currently focused on increasing the adoption of the selected Enterprise Privileged Access management tool, CyberArk, to reduce the overall risk landscape at AIG.
You will partner closely with the PAM Principal Engineers and the development teams to implement strong PAM controls, protect credentials and secrets and mature AIG's posture using the zero-trust framework.
What You Will Do:
- The PAM (Privileged Access Management) Engineer role is essential to supporting business requests for securing and managing privileged accounts.
- Plays a pivotal role in supporting the principal engineers by integrating applications with the PAM tool and extending capabilities of the PAM service, ensuring the management of Privileged Accounts and Secrets.
- Work directly with our users, being the front line of Privileged Access.
- Partner with engineering and architecture teams to scope requirements and capabilities for PAM that are out of the box. Installing and implementing marketplace plug-ins as needed to support adoption.
- Support the Principal Engineers to identify opportunities to enhance the PAM capabilities and contribute to process improvements.
- Provide training to end-users, Admins and DevOps, on CyberArk functionality and capabilities.
- Leverage knowledge of Privileged Access to maintain a clean and compliant environment.
- Implement robust monitoring and alerting for the PAM tool and privileged access.
- Help to define, identify, and inventory privileged access within our environment and detect exceptions to our standards through automated reporting solutions.
- Make risk-based and data-driven decisions to achieve prioritized outcomes in alignment with PAM standard.
Requirements
Do you have experience in Windows?, Do you have a Bachelor's degree?, * Detail-oriented and self-motivated.
- Customer-focused with strong communication skills, having the ability to communicate technical concepts to a non-technical audience.
- Bachelor's degree in a Cybersecurity, Information Technology, or related field, such as Computer Science or Information Technology.
- In depth experience as a Privileged Access Management (PAM) hands-on practitioner, ideally with experience running an enterprise vault, such as CyberArk, with a strong track record of configuring and maintaining the solution.
- CyberArk Defender Certification
- Extremely proficient using CyberArk AAM
- Profound understanding of privileged access management concepts, identity and access management, and security best practices
- Hands on experience using ServiceNow and Active Directory
- Conjur Fundamentals certifications
- Experience administering Secrets and Key management solutions such as Hashicorp Vault, AWS Secrets Manager, Keyfactor, and Conjur
- Knowledge of common IT infrastructure technologies and concepts:
- Directories: LDAP, Windows Active Directory, Azure AD, Okta, etc.
- Operating Systems: Windows, Linux, Unix (including AIX and Solaris), etc.
- Databases: Oracle, SQL, Postgres
- Mainframes: RACF, z/OS
- Network Protocols
- Familiarity with authentication security, such as MFA and certificates, a plus