Associate Principal, Privileged Access Management (CyberArk)
About the role
The Privileged Access Management (PAM) organization is responsible for the management and governance of privileged access throughout Aegon. As a PAM Associate Principal, you will drive the successful delivery and implementation of the Privileged Access Management program.
Responsibilities
- Design, configure, install, integrate, and maintain our PAM Solutions (CyberArk) across the enterprise environments.
- Provide solutions to effectively manage human, non-human, vendor, contractor, service, application, and cloud privileged accounts.
- Provide subject matter expertise to our business partners on how to manage privileged accounts while acting as an advocate for Enterprise Technology (ET) and our overall Security platform.
- Work closely with PAM Engineering to identify improvements and troubleshoot incidents as they arise.
- Aid in troubleshooting privileged access related issues across the enterprise environment.
- Aid in shifting cultural change towards a centralized security management program.
- Mentor junior members of the team.
- Lead large initiatives in driving the PAM environment changes including presenting and influencing at the senior levels in the organization.
- Ensure the PAM program will have the required Characteristics to support various Regulations and Standards such as SOX, NYDFS, NIST and SOCC.
- Create and present various material related to the PAM program at the executive-level (e.g. architectural diagrams, program roadmaps, business cases).
Qualifications
- Bachelor’s degrees in computer science or related degree, or equivalent education/experience.
- 10+ years of experience managing privileged access and integrating with platforms such as LDAP, Windows/UNIX, databases, network devices, and applications.
- Expert knowledge of Windows, Linux, and Mainframe systems, and how accounts and access are managed across the environments.
- 3+ years of experience scripting automation tasks.
- Experience creating, managing, and training customers about safes, vaults, session management, key managers, credential providers, platforms, and secrets management.
- Behavioral & Leadership Competencies: Commitment, Interpersonal Skills, Learning Aptitude, Critical Thinking, Resourcefulness, Tolerance of Ambiguity.
Preferred
- Extensive experience with CyberArk On-Premise Solutions (CCP, CP, Alero, Secrets Hub, PSM, Conjur).
- Certification (Sentry/Guardian) on the CyberArk platform.
- Knowledge of IAM, network architecture, and security concepts.
- Experience working in an Agile Scrum framework.
- Experience working in DevSecOps.
- Certified Information Systems Security Professional, CISSP.
- 12+ years of experience in IT/Security.
Working Conditions
This is a hybrid position requiring three days in office per week in one of our core locations (Cedar Rapids, Denver). May require some international travel. May require non-standard work hours due to global support and a globally dispersed team.
Compensation
The Salary for this position generally ranges between $122,000 -$162,000 annually. Please note that the salary range is a good faith estimate for this position and actual starting pay is determined by several factors including qualifications, experience, geography, work location designation (in-office, hybrid, remote) and operational needs. Salary may vary above and below the stated amounts, as permitted by applicable law. Additionally, this position is typically eligible for an Annual Bonus based on both Company and individual Performance and is at the Company’s discretion.
What We Offer
- Competitive Pay
- Bonus for Eligible Employees
- Benefits Package
- Pension Plan
- 401k Match
- Employee Stock Purchase Plan
- Tuition Reimbursement
- Disability Insurance
- Medical Insurance
- Dental Insurance
- Vision Insurance
- Employee Discounts
- Career Training & Development Opportunities
- Health and Work/Life Balance Benefits
- Be Well Company holistic wellness program, which includes Wellness Coaching and Reward Dollars
- Parental Leave – fifteen (15) days of paid parental leave per calendar year to eligible employees with at least one year of service at the time of birth, placement of an adopted child, or placement of a foster care child.
- Employee Assistance Program
- Back-Up Care Program
- PTO for Volunteer Hours
- Employee Matching Gifts Program
- Employee Resource Groups
- Inclusion and Diversity Programs
- Employee Recognition Program
- Referral Bonus Programs
Our Commitment to Inclusion & Diversity
We believe our commitment to diversity and inclusion creates a work environment filled with exceptional individuals. We’re thrilled to have been recognized for our efforts through the Human Rights Campaign Corporate Equality Index, Dave Thomas Adoption Friendly Advocate, and several Seramount lists, including the Inclusion Index, 100 Best Companies for Working Parents, Best Companies for Dads, and Top 75 Companies for Executive Women.
Give Back
We believe our responsibilities extend beyond our corporate walls. That's why we created the Aegon Transamerica Foundation in 1994. Through a mix of financial grants and the volunteer efforts of our employees, the foundation supports nonprofit organizations focused on the things that matter most to our people in the communities where we live and work.