The Privileged Access Engineer works under the Director of Privileged Access Management Services to plan, conduct and establish a functional vision for PAM assignments. The engineer possesses extensive knowledge related to Privileged Access and is primarily responsible for Lifecycle of a Privileged Access ecosystem under the Director’s direction along with other team members. This is a critical role for client as we embody a post-merger One client directive.• Experience with leading Privileged Access products in the industry such as CyberArk • A deep understanding of Disaster Recovery and Business Continuity configurations • The ability to articulate design concepts of technical product components, such as vaults, safes, session managers, key managers, credential providers • Experience with protocols, services and traffic flows for authentication • Can troubleshoot complex heterogeneous environments through server log and network traffic analysis, leaning on experience with troubleshooting and analysis techniques and tools • Experience understanding taxonomy of privileges on named or shared privileged accounts • Knowledge of privileged access technologies, including the ability to identify and triage failures or weaknesses in technology design and buildout • Documentation skills commensurate with an elite engineering team with an eye towards operational stability • Incorporated cybersecurity best practices for technology governance over privileged account lifecycles • Skills to perform disaster resiliency tests, discovery audits, and can present findings to management • Bachelor’s degree or equivalent industry experience • 5+ years of experience in implementation and integration of privileged access technologies • Experience with privileged access controls in Unix and Windows environments • Experience with broader IAM ecosystem of directories, identity management, and access management controls. • Cybersecurity certifications such as CISA, CISSP • Ability to interface with Corporate Audit and External Audit functions for regulatory compliance • Experience with Rest APIs for automated provisioning of vault components, accounts and access controls