The CyberArk IoT Engineer Administrator will implement CyberArk Solutions across Medical Devices, IoT, and OT accounts, connections, and external vendor access. End to end deployment of CyberArk and connectivity of CyberArk components to the target Medical Devices and IoT Device platforms.
Responsibilities:
Implementation and integration of CyberArk PAM Solution. Implementation of CyberArk components Enterprise Password Vault, CPM, PVWA, PSM, PSMP, AIM, DAP, PTA.
Creating CPM and PSM Plugins, safe and platform design
CyberArk CPM plugin specifications and design for an array of Medical Devices and IoT Devices.
Analyzing CyberArk CPM plugin and troubleshooting issues related to CPM failures across IoT Devices.
CyberArk DNA scan design to Discover IoT and Medical accounts / devices connecting to the network and automatically onboard those credentials, manage lifecycle, vulnerability, and patch management.
Bulk account on-boarding using passwords upload utility.
CyberArk Automation integration with other systems - ServiceNow (Nuvolo) asset inventory ticketing systems, data lakes, and other platforms.
Define Access Control, User Entitlements, Manage Applications Credentials and User Access Policies.
IoT / OT Session Isolation, Monitoring and Recording: Anytime an OT environment or IoT device is accessed, enable automatic isolation, monitoring and recording.
Patch and Manage Iot and Ot Connections: Set up interconnection with ServiceNow/Nuvolo to create tickets and priority / severity. Work with Clinical Healthcare Technology Cyber teams (and Vendors) to consistently upgrade and patch your systems.
Perform health check monitoring on all Cyber-Ark servers to ensure availability of system to end-users
Perform regular system audits to detect deviations from established procedures, account mapping unauthorized system activity and report findings.
Provision Access to External Vendors: Provide continuous controlled access to systems and devices, for human and non-human users alike. Setup onboarding and provisioning for External Vendor Access.
CyberArk support on technical issues, replicating customer issues and level 3 support.
Qualifications for success:
6-10 years in Technology, Cybersecurity, IAM with recent CyberArk deployment experience.
Bachelor's degree in Computer Science, Engineering, related discipline, OR 4yrs additional experience.
CyberArk SME
CyberArk SME with at least 4 years of CyberArk deployment, configuration, and troubleshooting.
Must have worked on multiple CyberArk Implementations and participated in requirements/ design etc.
Experience on end-to-end deployment of CyberArk components and connectivity to target platforms.
Implementation and integration of CyberArk PAM Solution. Implementation of CyberArk components Enterprise Password Vault, CPM, PVWA, PSM, PSMP, AIM, DAP, PTA.
Experience in designing, deployment, configuration, integration and troubleshooting CyberArk Privileged Account Security (PAS) product suite (Enterprise Password Vault, Password Vault Web Access, Central Policy Manager, Privileged Session Manager, Application Identity Manager, Privileged Threat Analytics
Experience creating CPM and PSM Plugins, safe and platform design. Automation using CyberArk REST API
Analyzing CPM plugin and troubleshooting issues related to CPM failures
CyberArk Bulk account on-boarding using passwords upload utility.
CyberArk DNA scan experience identifying privileged accounts, remediation per scan results.
CyberArk Certifications preferred: CyberArk Certified Defender, Sentry, or Guardian.
Good Knowledge on Linux Red Hat 7, Windows administration, LDAP, AD, IAM and Networking concepts.
Knowledge in Python, PowerShell.
LOGISTICS:
Local Denver resources only. No relocation provided.
Will be remote primarily but must be able to come into DTC office periodically after COVID Abates.
COVID-19 - Must be fully vaccinated OR provide medical or religious exemption.
W2 only - No sub vendors. Sponsorship NOT available. MUST PROVIDE DIRECT CONTACT INFORMATION TO APPLY.
You will need to be a US Citizen, and with the ability to obtain US Government TOP SECRET clearance, as well as successfully pass a 12 panel drug screen and 10 year background check, in order to meet eligibility requirements for access to classified information.
ITmPowered's Commitment to Diversity, Equity, and Inclusion: At ITmPowered Consulting, we are committed to fostering a diverse, equitable, and inclusive working environment where we value and develop employees of all backgrounds and experiences. We firmly believe collaboration among team members with varied pasts and perspectives generates more incisive and deeper insights that better serve our clients, employees and community.
