Lead Cybersecurity Engineer – Privileged & Password Management
| Company | American Family Insurance Group |
|---|---|
| Location | Madison, WI, USA, Boston, MA, USA, St Joseph, MO, USA, Phoenix, AZ, USA, Denver, CO, USA, Brattleboro, VT, USA |
| Salary | $111000 – $190000 |
| Type | Full-Time |
| Degrees | |
| Experience Level | Senior, Expert or higher |
Requirements
- 7+ years’ experience working as a senior PAM engineer or equivalent position
- Experience with PAM/PUM/PM tools such as CyberArk, BeyondTrust, Delinea, and equivalent solutions
- Experience with Agile Practices like Scrum, Kanban, CI, CD preferred
- Experience with build/tooling such as Git, Stash, Jenkins, Jira, and Confluence preferred
- Experience working in a team according to Agile development methodologies
- Must be able to demonstrate a firm understanding of the concepts of password vaulting, privileged session management, secrets management, and DevSecOps
- Experience with creating credential vaults, defining access control policies/platforms, user provisioning and entitlements, managing applications credentials, key management, and user access policy management.
- Ability to complete root-cause analysis on complex issues
- Troubleshooting highly complex issues
- Strong Knowledge of Risk and Compliance initiatives including PCI, SOX, HIPAA
- Knowledge of the NIST Cyber Security Framework
Responsibilities
- Oversee the organization’s privileged access management system
- Build, deliver, maintain, and update technology, platform, and system solutions in the Identity and Access Management space that addresses business and technical requirements, leveraging standard policies and standards
- Partners with other Technology Team members to provide advice or solutions within his or her area of expertise.
- Stays informed about current developments within his or her expertise.
- Identifies problems, performs root cause analysis, investigates information, performs impact analysis, and formulates and executes plans to develop solutions.
- Identifies strengths and weaknesses of alternative solutions, conclusions, or approaches to problems.
- Understands and can estimate effort and value for solutions.
- Understands at a broad level how technology platforms/architectures are applied to automated business solutions.
- Acts as a coordination and facilitation point for organizing work efforts.
- Sets up or follows established procedures to ensure high quality of work.
- Understands dependency identification processes in technology work, verifies information and carefully reviews and checks the accuracy of the teams work.
- Establishes or follows prioritization processes to drive work and has a sense of urgency about getting work completed.
- Looks for and seizes opportunities to do more or to do things better.
- Appropriately shares ideas and information with others.
- Practices attentive and active listening.
- Ensures that regular and consistent communications take place.
- Expresses ideas as well as business or technical requirements clearly and concisely in writing using appropriate levels of summary and synthesis.
- Expresses oneself clearly in conversation and interaction with others.
Preferred Qualifications
- 7+ Years of experience with other IAM disciplines such as Lifecycle Management, Directory Management, or Identity Governance
- IAM or Cybersecurity Engineering Background
- Experience with Identity Proofing methodologies
- Experience with REST/SOAP API’s
- Has web development experience (HTML, JSP, CSS, JavaScript, and/or PHP)
- Financial or insurance industry experience
- Relevant certifications (e.g., CISSP, CISM, CEH) are a plus.