Privileged Access Management Engineer

Company	American International Group
Location	New York, NY, USA
Salary	$99000 – $143000
Type	Full-Time
Degrees	Bachelor’s
Experience Level	Senior, Expert or higher

Detail-oriented and self-motivated.
Customer-focused with strong communication skills, having the ability to communicate technical concepts to a non-technical audience.
Bachelor’s degree in a Cybersecurity, Information Technology, or related field, such as Computer Science or Information Technology.
7+ years as a Privileged Access Management (PAM) hands-on practitioner, ideally with experience running an enterprise vault, such as CyberArk, with a strong track record of configuring and maintaining the solution.
CyberArk Defender Certification
Extremely proficient using CyberArk AAM
Profound understanding of privileged access management concepts, identity and access management, and security best practices
Hands on experience using ServiceNow and Active Directory
Conjur Fundamentals certifications
Experience administering Secrets and Key management solutions such as Hashicorp Vault, AWS Secrets Manager, Keyfactor, and Conjur
Knowledge of common IT infrastructure technologies and concepts: Directories: LDAP, Windows Active Directory, Azure AD, Okta, etc.; Operating Systems: Windows, Linux, Unix (including AIX and Solaris), etc.; Databases: Oracle, SQL, Postgres; Mainframes: RACF, z/OS; Network Protocols
Familiarity with authentication security, such as MFA and certificates, a plus.

Partner closely with the PAM Principal Engineers and the development teams to implement strong PAM controls, protect credentials and secrets and mature AIG’s posture using the zero-trust framework.
Plays a pivotal role in supporting the principal engineers by integrating applications with the PAM tool and extending capabilities of the PAM service, ensuring the management of Privileged Accounts and Secrets.
Work directly with our users, being the front line of Privileged Access.
Partner with engineering and architecture teams to scope requirements and capabilities for PAM that are out of the box. Installing and implementing marketplace plug-ins as needed to support adoption.
Support the Principal Engineers to identify opportunities to enhance the PAM capabilities and contribute to process improvements.
Provide training to end-users, Admins and DevOps, on CyberArk functionality and capabilities.
Leverage knowledge of Privileged Access to maintain a clean and compliant environment.
Implement robust monitoring and alerting for the PAM tool and privileged access.
Help to define, identify, and inventory privileged access within our environment and detect exceptions to our standards through automated reporting solutions.
Make risk-based and data-driven decisions to achieve prioritized outcomes in alignment with PAM standard.