Job Description :
CA Privileged Access Management (PAM)/CyberArk Engineer(H1 TRANSFERS ALSO ACCEPTED ONLY ON W2)
City: Fairfax, Virginia, United States

- Primary mission of the project will be implementing a proactive risk management solution to enhance the customer’s cyber defense posture.
- Work with a highly skilled and experienced team focused on next generation security solutions, specifically leveraging CyberArk and CA PAM to lock down and effectively manage privileged user accounts.
- Provide Tier 2/3 support for incidents relating to security tools/solutions and general technical support to customer teams and their prioritized activities.
- Serve as a trusted advisor, technical leader, and cyber security expert to continuously improve customers’ security deployments, identify opportunities to enhance the client’s cyber security posture, and integrate new technologies and services.
- Advise and consult the client regarding policy, processes, and technology issues, while helping to scope and design multi-vendor security solutions for large networks.
- Support the client with their risk and threat mitigation solutions.
- Work closely with service delivery managers to prioritize daily tasks.
- Participate in technical meetings with customers’ technical specialists.
- May lead an engineering team focused on Identity Access Management (IAM
- Participate as needed in all phases of software development with emphasis on the planning, analysis, testing, integration, documentation, and presentation phases.
- Due to the nature of the government contract requirements and/or clearance requirements, US citizenship is required.
- Bachelor’s degree and 5-8 years of experience working in Identity and Access Management (IAM) or a Master’s degree with at least 4 years of experience.
- At least 2.5 years of working experience deploying, configuring and testing CA PAM and/or CyberArk to large enterprises.
- Experience with integrating PAM solutions with Splunk and/or other IAM tools such as SailPoint, as well as with multi-factor authenticators such as PIV cards.
- Practical experience with PKI solutions, including SSL.
- Extensive experience working with clients to provide design & architectural guidance and best practice recommendations for safe design, access control policies, and other related security requirements or needs.
- Hands on experience deploying backup, high-availability and DR environments.
- Proven ability to work closely with customer’s network and operations teams, as well as vendors, to resolve issues or security concerns of tools/services.
- Working experience with MS Internet Information Services (IIS) and Active Directory (AD
- Must be able to pass a CGI background check to start employment as well as obtain and maintain a DHS EOD/Public Trust clearance.
- Oracle IAM, Centrify, and/or Radiant Logic experience
- Microsoft Certificate Authority experience
- Linux administration experience
- Windows PowerShell experience
- Basic programming skills (Python or Java)
- Basic knowledge of networking and firewalls
- Basic Splunk knowledge
- Basic SailPoint IIQ knowledge
- PAM tool certifications, e.g. CyberArk level 3 (Sentry) certification or higher
- Security certifications such as CISSP, CISM, CISA, Sec+, CEH.
- Understanding of databases and vaulting technologies.
- Understanding of federal cyber security guidance such as NIST SP 800-37 and NIST 800-137.
- Understanding of the DHS Continuous Diagnostics and Mitigation Program (CDM