Job description
Project Role : Operations Engineer
Project Role Description : Support the operations and/or manage delivery for production systems and services based on operational requirements and service agreement.
Must have skills : CyberArk Privileged Access Management
Good to have skills : Microsoft Active Directory
Minimum 7.5 year(s) of experience is required
Educational Qualification : 15 years full time education
Summary:
As senior identity engineer responsible for design, implementation, administration, and support of self-hosted CyberArk Privileged Access Management (PAM) environments. This role leads complex deployments, drives platform stability and security hardening, automates operational tasks, and acts as a primary technical contact for clients and internal stakeholders.
Roles & Responsibilities:
1) Design and Implementation : Lead end-to-end implementation of self-hosted CyberArk solutions including Vault, PVWA, CPM, PSM, and related components design HA and DR architectures.
2) Administration and Operations : Perform day-to-day administration, patching, upgrades, backups, capacity planning, and performance tuning for production and non-production environments.
3) Integration and Automation : Integrate CyberArk with Active Directory, LDAP, SIEM, ITSM, PAM connectors, and custom applications develop automation using REST APIs, PowerShell, or Python.
4) Security and Compliance : Implement security hardening, secrets lifecycle management, credential rotation, session recording and monitoring support audits, access reviews, and compliance reporting.
5) Incident Management and Troubleshooting : Diagnose and resolve complex platform issues, lead root cause analysis, and implement corrective actions.
6) Client Interaction and Advisory : Serve as technical lead for client workshops, requirements gathering, solution proposals, and status reporting translate technical details for non-technical stakeholders.
7) Knowledge Sharing and Runbooks : Create and maintain runbooks, run regular knowledge transfer sessions, and mentor junior.
Professional & Technical Skills:
1) CyberArk Components : Deep practical experience with Vault, PVWA, CPM, PSM, Central Policy Manager, and related modules.
2) Platform and Infrastructure : Strong Linux and Windows server administration, virtualization (VMware, Hyper-V), networking fundamentals, load balancers, and storage, Cloud etc.
3) Scripting and Automation : Proficiency in PowerShell and/or Python for automation and integration tasks.
4) Identity Integrations : Experience integrating with Active Directory, LDAP, SAML, and MFA solutions.
5) Databases and Backups : Familiarity with SQL Server or other DBs used by CyberArk, backup/restore procedures, and disaster recovery planning.
6) Security Tooling : Experience integrating with SIEM, ITSM, and monitoring tools.
7) Experience in Jira, Trello or any other project management tools.
Soft Skills and Client Experience
1) Client Facing : Comfortable leading technical discussions, presenting to clients, and running workshops.
2) Communication : Clear written and verbal communication ability to produce technical documentation and executive summaries.
3) Problem Solving : Strong analytical skills, ability to prioritize under pressure, and lead incident response.
4) Team Leadership : Experience mentoring junior staff and coordinating cross-functional teams.
Nice to Have
1) Experience with other PAM solutions such as Delinea/Thycotic, BeyondTrust, Centrify, or Okta PAM.
2) Experience with privileged threat analytics, secrets management platforms, or cloud-native PAM integrations.
3) Okta Identity Cloud, Okta Certified Professional(must have), Okta Certified Administrator.
Success Metrics
1)Platform Availability : Maintain target uptime and SLA adherence for production environments.
2)Operational Efficiency : Reduction in manual tasks through automation and improved mean time to resolution for incidents.
3)Compliance Readiness : Successful audit outcomes and timely completion of access reviews.
4) Client Satisfaction : Positive client feedback on delivery, communication, and technical leadership.
Additional Information:
1) The candidate should have minimum 5 years in PAM or privileged access security, with at least 3 years focused on CyberArk implementation and administration for self-hosted deployments.
2) Bachelor's degree in Computer Science, Information Security, or equivalent practical experience.
3) This position is based at our Bengaluru office.
4) A 15 years full time education is required.
5) Relevant CyberArk certifications such as CyberArk Certified Delivery Engineer(CDE-PAM), CyberArk Certified Trustee,
This job post has been translated by AI and may contain minor differences or errors.
