PAM Privileged Access Management Managed Service SME

Job description

Duties & Responsibilities
Ensure critical global Privileged Access Management service meets key service and security objectives, by maintaining sustainable and effective service and security monitoring, investigation and remediation of service and security issues.
Assist in transformation of Cyber Security Operations; supporting a series of funded transformation activities (including privileged access management).
Contribute to design, development and maintenance of security standards and controls.
Lead continuous service improvement & development activities including health-checks and upgrades.
Manage and advise technical support and application teams to assist in the on-boarding of new systems into the PAM service.
Develop and support assurance activities for effective management of privileged access
Leading a team in the identification and ongoing monitoring of specific security risks and KPIs and production of management information to ensure value from key security services.
Perform PAM administration activities in accordance with security standards to ensure that passwords are accessible to appropriately authorized users only.
Provide out of hours support and change delivery for PAM service (on a rota basis)
Day-to-day activities include working with customer teams and supporting current tasks and activities.
Managing the CyberArk environment and dependent technologies, including Enterprise Password Vault, Central Password Manager, Password Vault Web Access, Privileged Session Manager, (EPV, PSM, CPM, PTA, PVWA, AIM) & RSA Secure ID MFA. Working with Windows and Linux support teams.
Troubleshooting system and application accounts in a diverse systems/application architecture.
Administer password rotations, password malfunctions, account creations, account changes, accounts integrations, maintaining/creating new safes, and CyberArk policies.
Managing EPV(Enterprise Password Vault) with respect to information/systems security and identity/access management.
Candidates may be required to Provide end-user training and CyberArk infrastructure management.
Responsible for licensing and entitlement management of the CyberArk environment, including growth and capacity planning
Responsible for performance tuning, providing high availability and eliminating single points of failure for the CyberArk environment
Provides environment & DR support (clustering, backups, SOPs etc.)
Performs vault/safe/platform Administration
Supports CyberArk Projects (upgrades, new functionality, etc.
Assists with external Projects / Onboarding- gather requirements which would include scope, customization, etc. and account uploads
Lead automation activities
Performs account ( Vault Internal) administration, monitoring, maintenance and secondary controls
Supports vulnerability management audit/compliance research and remediation
Manage incidents, service requests, and change tasks in the ITSM system of record; with ownership, and escalation of issues through resolution
Accurately maintain all documentation as it relates to configuration, processes, service records, asset inventories, topologies, administration manuals, job instructions, support contacts etc.
Ensure IT Leadership is aware of all known and identified risks to system availability, performance, reliability and security
Scripting, Automation, and Orchestration to drive efficiencies within IT operations
Partner with security and risk teams to implement and maintain security polices and configurations in accordance with corporate requirements
Auto req ID

243844BR
Required Education

Technical Diploma
Role ( Job Role )

Security Specialist
State / Province

LONDON, CITY OF
Primary job category

Technical Specialist
Company

(8660) IBM United Kingdom Limited
Contract type

Regular
Employment Type

Full-Time
ERBP

Yes
Is this role a commissionable/sales incentive based position?

No
Travel Required

Up to 50% or 3 days a week (home on weekends - based on project requirements)
IBM Business Group

Security
Preferred Education

Bachelor's Degree
City / Township / Village

LONDON
Being You @ IBM

IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
Required Technical and Professional Expertise

Strong background in CyberArk administration and implementation
A strong working knowledge of CyberArk core architecture, vault management, password management, and policy management Experience integrating application password management via CyberArk Providers.
Experience Leading IAM Operational, Project or Support Teams
A thorough understanding of Identity and Access Management Governance models
Proven technical understanding of Identity and Access Management
Experience with integrating PAM solutions with other IAM tools
Experience integration PAM solutions with multi-factor authenticators
Awareness and use of security and privacy concepts
Possess excellent written and verbal communication skills.
Strong requirements elicitation and conflict resolution skills.
Data analytics, interpretation and presentation.
Security certifications (e.g. CISSP, CISM, CISA, CEH, etc) would be beneficial

Country/Region

United Kingdom
Preferred Technical and Professional Experience

Working knowledge of/familiarity with ITIL. Certification to ITIL Foundation level is a minimum
Working knowledge of/familiarity with Project Management principles. Certification to Prince 2 Foundation level is a minimum
Secondary Job Category

Technical Solutions Support Specialist
Eligibility Requirements

SC, or ability to achieve SC Clearance
Position Type

Professional
Early Professional Track

Not Applicable - Professional Hire
Location Statement

Hursley or London
Introduction

At IBM, work is more than a job - it's a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you've never thought possible. To lead in this new era of technology and solve some of the world's most challenging problems.
Your Life @ IBM

What matters to you when you're looking for your next career challenge?

Maybe you want to get involved in work that really changes the world. What about somewhere with incredible and diverse career and development opportunities – where you can truly discover your passion? Are you looking for a culture of openness, collaboration and trust – where everyone has a voice? What about all of these? If so, then IBM could be your next career challenge. Join us, not to do something better, but to attempt things you never thought possible.

Impact. Inclusion. Infinite Experiences. Do your best work ever.
About Business Unit

IBM is a leading provider of enterprise security solutions. Named by industry analysts as a leader in 12 security market segment categories, IBM Security is a multi-billion dollar business that is rapidly growing. In an industry focused on building walls, IBM Security is focused on creating an open, connected security ecosystem that leverages AI and cloud to help clients improve compliance, stop threats, and grow their business securely. Join our global team of IBM Security employees in protecting the world, and helping our clients thrive in the face of cyber uncertainty.
About IBM

IBM's greatest invention is the IBMer. We believe that progress is made through progressive thinking, progressive leadership, progressive policy and progressive action. IBMers believe that the application of intelligence, reason and science can improve business, society and the human condition. Restlessly reinventing since 1911, we are the largest technology and consulting employer in the world, with more than 380,000 IBMers serving clients in 170 countries.