CyberArk Engineer

Key Role:

Apply Cybersecurity expertise in Identity and Access Management (IAM) to analyze, design, and support a continuous monitoring solution to verify and validate appropriate user privileges, assigned credentials, trustworthiness, appropriate user security behavior training, and appropriately granted resource access rights to users. Engage multiple stakeholders and leverage related security products or technologies to recommend solution architectures and designs needed to monitor and report on IAM related data across multiple government agencies. Integrate disparate IAM data from multiple sources into a singular database for correlation and presentation. Maintain responsibility for articulating and authoring multiple findings, recommendations, and other artifacts, including interfacing with key stakeholders to implement tailored IAM solutions. Work with architects, SMEs and other engineers, and provide work leadership to junior employees, as needed. This position is open to remote delivery anywhere within the U.S., to include the District of Columbia.

Basic Qualifications:

• 3+ years of experience with IT, including supporting access management solutions, such as user privileges management, user credential management, and user security related behavior monitoring

• 3+ years of experience in supporting IAM, security operations and threat response, or security architecture

• 3+ years of experience with requirements, design, implementation, integration, testing, or change management

• 3+ years of experience with COTS IAM tools, including CyberArk, Broadcom Layer 7/ CA PAM, Centrify or BeyondTrust

• 3+ years of experience collaborating with clients to deliver results

• 1+ years of experience with implementing IAM tools in an enterprise environment

• Knowledge of Active Directory or LDAP management, configuration, or design, PKI, X509, SSO across multiple domains, 2FA via PIV or CAC and scripting and coding

• Ability to obtain a security clearance

• HS Diploma or GED

Additional Qualifications:

• Experience with SailPoint, Saviynt

• Experience with supporting IAM in a Cloud environment, including Azure or AWS

• Experience with SQL database administration or management

• Experience with an SIEM tool, preferably Splunk or the ELK stack

• Experience with authoring Cybersecurity guidance, including policies, strategies, and whitepapers

• Experience with implementing PKI and PIV standards

• Experience with HSPD-12, FIPS 201-2, FICAM, OMB 11-11, FedRAMP, PCI, FISMA, or NIST 800-53, 800-63, 800-79-2, or 800-157 policies and standards a plus

• Knowledge of HTTP, XML, REST, JSON a plus

• Master's degree in Information Technology, Information Systems, or Computer Science

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

Compensation:

The proposed salary range for this position in Colorado is $120,000 to $140,000. Final salary will be determined based on various factors.

At Booz Allen, we celebrate your contributions, provide you with opportunities and choice, and support your total well-being. Our comprehensive benefit offerings include healthcare, retirement plan, insurance programs, commuter program, employee assistance program, paid and unpaid leave programs, education assistance, and childcare benefits.

We're an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change - no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.