Allstate Technology & Strategic Ventures (ATSV) team is embarking on a journey to optimize, modernize Application computing in the Datacenters and to leverage various Cloud provider services.
Within Allstate Information Security, Enterprise Privilege Vault Security Engineers are tasked to develop Vault and Privileged Session Manager standards, oversight authority for all Vault related activities, bears responsibility for maintaining the environments at all points in their lifecycle.
Educate & mentors Business / Technology teams around adoption / best practices and ensure compliance with all responsibilities for Vault management.
CyberArk PIM Suite including but not limited to provisioning for; Secure Document Vault (Secure repository and sharing infrastructure), Enterprise Password Vault (Privileged Accounts at OS and DB levels), Privileged Session Manager (PSM) (Control and monitor privileged accesses), Discovery and Analysis tool
2 - 3 years of experience in deployment & implementation of Privileged Identity Management using CyberArk solution for large scale customers
Responsible for Privileged User account administration of various Windows and UNIX accounts using CyberArk components.
Integrating various platforms with CyberArk, such as different LDAP providers, Windows servers, UNIX servers, Databases and networking Devices.
Creating and Managing Safes, Platforms and Owners.
Central Policy Manager (CPM) policies management or redistribution.
Knowledge on CPM and PSM connector customization
Perform health check monitoring on all CyberArk severs to ensure consistent availability of system to end user.
Test and certify new product versions, bug fix and provide detailed reports
Bachelor Degree in Computer Science / Engineering / Maths / Physics
10 years of overall work experience in Cybersecurity, of which 3- 5 years of work experience supporting CyberArk PIM Suite / Infrastructure
PSM connector customization is a MUST
Experience maintaining and implementing new settings along with remediation and mitigation as required
Ability to document installation procedures, Standard Operating Procedures (SOP), etc.
Extensive experience with digital password vaulting solutions
Experience in Windows programming (.Net, VB Scripting, PowerShell, Administrative scripting) a plus
Experience of different Windows / UNIX platforms in large heterogeneous environment.
SQL development experience nice to have.
Working knowledge of Microsoft's Active Directory infrastructure able to gather information requested
CyberArk Platform certification
Basic understanding of high-availability (HA) and failover implementations for network infrastructure and server systems
Ability to describe highly technical information in an understandable level to any audience
Ability to work with minimal direction on a variety of, and sometimes ambiguous, requirement
Experience with human versus non-human (service) accounts
Experience of LDAP (server and client), NIS, NIS+, PAM
Citrix prior experience highly desired
1- 9.30PM IST M-F