Description
Job Purpose and primary objectives:
- Working with other teams in a global organization
- Managing Active Directory Users and Computers
- LDAP
- Unix/Linux administration
- Data Leakage Prevention technologies
- Proactive maintenance and responding to user incidents
- Windows Server administration and troubleshooting
- Application of network security principles
- Integrating non -Windows systems for Kerberos in a Windows AD domain
- Interpreting multi layered configuration settings -eg policies.
- PowerShell Scripting
- Knowledge of Internet Security and cloud services
- Principles of network security
- Good standard of written English and reporting skills
Key responsibilities
- Manage engine Privileged Access Management
- Manage engine Identity Management
- CyberArk Privileged Management Solutions
- Service Now
- ITIL Fundamentals
- Experience of Windows Terminal Services/RDSH
- Linux Shell Scripting
- Adding and removing endpoints within appropriate groups in the PAM service
- Working with users and vendor to configure endpoints for Cloud, Storage and VSTS
- Identifying and proposing different approaches based on Kerberos
- Establishing Password Recovery procedure
- Configuring session policies
- Training/assisting system administrators in their use of the system
- Troubleshooting performance and deploying additional components
- Carry out upgrades under direction of the vendor
- Apply security updates
- Reviewing logs/session forensics
- Integrating with additional domains and directory services
- Importing credentials from CyberArk
- Adding and removing users to groups mapped to target Servers
- Identifying correct groups/roles for privileges on each endpoint
- Discovering privileged accounts
- Evaluating requests and managing exceptions
- Processing requests in Service Now
- Maintaining documentation following approved changes
- Working with the vendor's support teams to resolve issues
Developing and optimizing processes required to deliver the PAM solution