Experience: Must have Bachelor’s degree or equivalent and eighteen (18) years of related experience; master’s degree and sixteen (16) years of related experience; Ph.D. and thirteen (13) years of experience; twenty (20) years of related experience with no degree.
Duties: Responsible for providing unique cyber domain expertise and guidance to the delivery team and stakeholders. Work may encompass one or more specialty areas of cyber security, cyberspace, and cyber operations, including providing expert knowledge and insight into compliance, cyber hunt, incident response, risk and vulnerability assessment, and emerging cyber threats requirements; guiding technical support to penetration testers, incident handlers, cyber analysts, and product support personnel relative to the cyber arena; assisting in the management of complex networks and systems of differing classification levels systems; integrating cyber security requirements with communication and IT; and utilizing other principles in the professional body of knowledge. Performs research, design evaluation, technical development, system integration planning, and other tasks in specific technical areas. May be responsible for complex cyber, technical, engineering, and architecture tasks. Often coordinates and guides the activities of technical staff members assigned to specific tasks. May supervise and/or guide a broad team of technical staff
Job Summary: Apply for a career-defining opportunity as a CyberArk Senior Systems Engineer, where you will lead the charge in strengthening the security posture of the Department of Transportation (DOT) through the implementation and maintenance of a cutting-edge Privileged Access Management (PAM) solution. Collaborating closely with external stakeholders, including DHS CISA integrators, your expertise will be pivotal in operationalizing the PAM solution across development, testing, and production environments, ensuring robust security and efficient access management.
Your responsibilities will extend beyond routine operations to include the meticulous management of roles and safes, deploying software updates, and generating insightful reports on PAM tool efficacy. You will play a critical role in identifying and mitigating security vulnerabilities, offering on-call support to address any challenges that arise swiftly.
In addition to ensuring the seamless functionality of the PAM solution, you will contribute to the organization's resilience through annual disaster recovery testing, documentation of recovery plans, and performing vital operating system patching on vault appliances. Your insights will guide enhancements and changes within the PAM framework, adhering to DOT’s Change Management processes.
By joining our team, you'll leverage your subject matter expertise to recommend and implement reporting capabilities that align with DHS CISA requirements, ensuring data integrity and compliance. This role not only offers the chance to impact the DOT's cybersecurity posture significantly but also positions you at the forefront of protecting critical infrastructure against evolving threats.
Position: FT/PT : Full Time Travel Y/N? : On-site twice a week
Top Qualifications, Skills, Experience or Certifications:
1. Must have a minimum of 8 years of related experience providing business solutions engineering support, to include architectural design, engineering design, proof of concept development, pilots, analysis, results, and documentation.
2. Performs day-to-day activities required to assist and identify technology solutions that meet enterprise requirements. Maps functional requirements into technological requirements, and identifies technologies that meet the technological requirements. Conducts proof of concept, pilots and demos for the purposes of evaluating the suitability of given technologies for meeting requirements. Evaluates the tradeoffs between competing solutions and develops quantitative driven analysis of alternatives. Produces written analysis of research and recommendation papers that clearly describe the process followed, alternatives considered, evaluation criteria and rationale for recommendation and need for additional work.
Job Role Specific Requirements:
Core responsibilities and duties; highlight day-to-day activities:
1. CyberArk Sentry Certification: Certified CyberArk Sentry qualification, demonstrating advanced knowledge and skills in managing the CyberArk Privileged Access Security Solution.
2. Proven CyberArk Implementation Expertise: Three years of experience in designing and implementing comprehensive lifecycle management processes for CyberArk within an organization comparable to the Department of Transportation (DOT), showcasing a deep understanding of privileged access management solutions.
3. Extensive Server Administration Experience: Five years of server administration experience, including proficiency with Windows Server 2019 and Red Hat Enterprise Linux (RHEL) 8, indicating a strong foundation in managing and maintaining critical server infrastructure.
4. CyberArk Design Architect Proficiency: Three years of dedicated CyberArk experience in a design architect role, encompassing disaster recovery planning, ensuring high availability, and conducting system administration within a large-scale enterprise environment similar to DOT, highlighting the ability to architect robust and resilient CyberArk deployments.
Preferred skills and qualifications:
1. CyberArk and SailPoint Integration Acumen: Demonstrated proficiency in integrating CyberArk with SailPoint, showcasing the capability to harmonize privileged access management with identity governance solutions for enhanced security protocols.
2. Advanced Active Directory Expertise: Comprehensive knowledge of both the user interface aspects of Active Directory, such as account management and Group Policy, and the technical components, including AD Schema, Public Key Infrastructure (PKI), and automation via PowerShell, ensuring a well-rounded approach to directory services management.
3. Database Management Skills: Solid foundational understanding of database management, specifically with SQL Server 2019. This includes experience with backups, indexing, integrity checks, installation and configuration, managing ports and protocols, developing maintenance plans, and adept troubleshooting. Additionally, proficient in data modeling and schema, with the ability to interpret and navigate Entity Relationship Diagrams (ERDs), indicating a comprehensive grasp of database architecture and operations.
4. CyberArk Configuration Knowledge: Proven ability to configure CyberArk for secure integration with a variety of systems and devices, including networks, iDRAC interfaces, applications, cloud services, storage solutions, servers, and appliances, ensuring a secure and efficient privileged access ecosystem across the IT landscape.
"This is the base hourly pay range that Aditi Consulting reasonably expects to pay someone for this position $80- $ 85 (compensation may vary outside of this range depending on a number of factors, including but not limited to, a candidate’s qualifications, skills, competencies, experience, location and end client requirements)."
"Benefits and Ancillaries
- Medical, dental, vision PTO benefits and ancillaries may be available for eligible Aditi Consulting employees and vary based on the plan options selected by the employee.