Privileged Access Management Administrator
Heredia, CR
hace 6 días

Job Description

The Privileged Access Management Expert will be responsible for supporting the Privileged Access Management (PAM) services while adhering to Eurofins standards and best practices for the entire environment, working closely with business and IT stakeholders to develop and perform stronger governance of PAM & IAMprocesses.


Required Professional Expertise :

  • Bachelor’s degree on Computer Science or relevant field, ideally with :
  • CISSP, CCSK / CCSP (part of ISC2)
  • Or CISM certification
  • From 5 to 10 years of general IT Infra experience
  • At least 5 years of PAM experience
  • Superb English fluency, both spoken and written
  • Technical Skills :

  • Solid Knowledge of BeyondTrust, CyberArk, Observe IT, (any of the 3 but preferably BeyondTrust)
  • Experience and working knowledge of IAM / PAM Standards and common best practices including : authentication, authorization, role-based access controls and PAM Governance and Administration
  • Strong understanding of Privileged Access Management processes :
  • Privileged access controls
  • Role Base Access Control and / or Attribute and Policy-based Access Control
  • Managed credentials and systems
  • Monitoring and SIEM integration
  • ITSM integration (ticketing system used)
  • Manage Applications Credentials
  • User Access Policy Management
  • Break Glass procedures (when the solution fails there needs to be a pushed immediate solution)
  • PowerShell scripting experience (or Python, Perl, etc)
  • Strong Windows Active Directory, UNIX, Linux & SSH (Secure Shell key management experience)
  • Strong understanding of network hardware configuration and password management options (SSH, LDAP) Light Weight Directory Access Protocols (AD access)
  • Strong understanding of Microsoft SQL Databases (understand the functioning of the DBs)
  • Strong understanding of authentication methods and techniques (LDAP / AD, others)
  • Bonus Points :

  • Strong knowledge of SAML, Header-Based authentication, SCIM, FIDO, OAuth, Open ID connect and REST concepts
  • Strong understanding of the information security domains
  • Experience with different services, technologies within cloud environments like AWS, Azure, GCP
  • Additional Information

    Essential Duties and Responsibilities :

  • Responsible for creating, maintaining (new control to be added, or a policy, new industry requirement / changes to keep up with standard, etc) and monitoring the policies on PAM solutions.
  • Ability to document and define PAM target state processes and gather business requirements (proof of concept to extend the capabilities we currently have, biz acumen and requirement to leverage and find the right solutions)
  • Support security-related assessments and configurations for PAM platforms and provide a recommendation of the best practices for implementation (response to audit findings and match with the right solution based on a crossed analysis of those findings)
  • Develop and report risk metrics (KPIs / KRIs) as well periodic scorecards consumed by management for the PAM program
  • Keep pace with emerging IAM and PAM technology, cyber threats, and industry trends around cybersecurity
  • Establishes and refines procedures and other business processes to detect errors and inconsistencies in privileges (technologies and biz / process) for general architectural future understanding.
  • Support detailed reporting and root cause analysis with various internal technology teams
  • Build relationships and serve as a liaison between system / application owners and the internal technology team for governance and security-specific initiatives
  • Reportar esta oferta

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Mi Correo Electrónico
    Al hacer clic en la opción "Continuar", doy mi consentimiento para que neuvoo procese mis datos de conformidad con lo establecido en su Política de privacidad . Puedo darme de baja o retirar mi autorización en cualquier momento.
    Formulario de postulación