IAM Senior Security Engineer

What you’ll be doing

A Systems Security Engineer Senior will join our global Identity & Access Management team to support our SailPoint IDM and CyberArk(PAM) systems following the global Experian strategy, working with teams sitting in multiple regions, in this role you will be responsible for development and functional support for IIQ and CyberArk, infrastructure support and vulnerability management, working in partnership with development teams and internal operational teams to make sure the new system functionalities be transitioned and supported accordingly as per business requirements. You will need to be able to support the creation of system operational metrics, highlight system gaps, improvement, and work in conjunction with development and application teams to mitigate any gap as well tracking and implementing the identified improvement activities.

Summary of Primary Responsibilities

• Serve as an experienced engineer within the SailPoint IIQ space with operational and development expertise.
• Act as functional technical contact to support & drive a strong engineering culture while fixing or supporting production issues.
• Perform critical analysis to identify and resolve conflicts and break down high-level information into actionable work plans.
• Assist technical team members with the system/technical portion of their deliverables (e.g., test plans, implement monitoring activities, etc.).
• Collaborate with internal infrastructure teams to resolve incidents and alerts accordingly based on establish incident response timelines.
• Perform end to end RCAs when required for SailPoint IIQ and CyberArk systems.
• Recommend adjustments to the technical requirements and adjust with agility to the business needs.
• Analyze, design, and develop new features for the CyberArk PAM product family, focusing on expanding the capabilities.
• Create and maintain accurate documentation of technical requirements, designs, infrastructure, and support processes.
• Collaborate and partner with engineers, architects, and teams throughout IT to ensure appropriate alignment of requirements to PAS solutions and capabilities
• Drives execution of the PAM use cases, roadmaps and technology enhancements

Requirements

• 6+ years of professional Identity Management (IDM) experience, with demonstrated understanding of modern IDM concepts and best practices.
• 3+ years of experience designing and implementing CyberArk lifecycle management processes in complex cybersecurity environments. Experience with secret management solutions.
• 4+ years’ experience providing SailPoint application support into high availability environments.
• Strong experience in administration, configuration and troubleshooting on CyberArk modules: Enterprise Password Vault (EPV), Password Vault Web Access (PVWA), Central Policy Manager (CPM), Privileged Session Manager (PSM) and Privileged Session Management Proxy (PSMP).
• Solid knowledge of identity data flows, engineering workflows, security roles, certification / attestation, entitlement management, SOD and access governance in SailPoint IIQ.
• Experience with integrating SailPoint IIQ with various technologies, including ServiceNow, SAP, Azure AD, Office 365, RACF, LDAP directories.
• Basic understanding of Amazon Web Services (AWS), Azure or similar cloud providers.
• Hands on experience on Database Administration and support (Oracle, MSSQL, MySQL)
• Experience with various APIs including SCIM, REST, and SOAP
• Understanding of cloud native secret management solutions, such as Azure Key Vault and AWS Secrets Manager.
• Familiarity with programming and web technologies such as Java / Bean Shell, JavaScript, SPML / SOAP, JSF.
• Strong analytical, problem-solving skills, able to provide rigorous and detailed descriptions of problems and features to product developers and managers.
• Ability to provide RCA status and describe and present these in a well-organized manner.
• Experience providing security consultation on projects
• Self-driven and able to clearly communicate to technical and non-technical audiences.
• SailPoint IIQ and/or CyberArk Certifications (Sentry, CDE-PAM, CDE-CPC, etc.) or other security certifications are a plus.

Additional information

Experian Careers - Creating a better tomorrow together

Find out what its like to work for Experian by clicking here