RiDiK - Associate Security Consultant - Identity & Access Management (6-10 yrs)

We are seeking a highly skilled Associate Security Consultant with 6-10 years of experience specializing in CyberArk Privileged Access Management (PAM). The candidate will be responsible for providing Level 3 engineering support, managing vault configurations, session management, and ensuring secure access control. The ideal candidate will have strong troubleshooting skills, experience in privilege management, and a deep understanding of security best practices.

Key Responsibilities :

- Provide Level 3 engineering support for CyberArk PAM, resolving complex technical issues and performing advanced troubleshooting.

- Configure and maintain CyberArk PAM policies, including vault, safes, access control, and session management.

- Implement, manage, and optimize CyberArk components such as PVWA, CPM, PSM, and EPV.

- Ensure secure access to privileged accounts by designing robust authentication and authorization mechanisms.

- Perform system upgrades, patches, and enhancements to maintain security, performance, and compliance.

- Conduct root cause analysis for high-impact incidents and collaborate with IT security teams to improve overall security posture.

- Ensure compliance with industry security standards such as ISO 27001, NIST, and CIS benchmarks.

- Conduct risk assessments and implement best practices for privileged account security.

- Monitor and analyze privileged access activities, providing recommendations for security improvements.

- Assist in audits and forensic investigations related to privileged access breaches.

- Work closely with IT security teams to integrate CyberArk PAM with other security tools such as SIEM, IAM, and endpoint security solutions.

- Develop and maintain comprehensive documentation, including runbooks, policies, and security guidelines.

- Provide knowledge transfer and mentorship to junior security engineers and IT support staff.

- Participate in security strategy discussions and contribute to the continuous improvement of security frameworks.

Required Skills & Qualifications :

- 6+ years of hands-on experience with CyberArk PAM, including vault configuration, policy creation, and session management.

- Expertise in configuring and managing CyberArk components (PVWA, CPM, PSM, EPV, AIM, and PTA).

- Strong troubleshooting skills with deep knowledge of privilege access security best practices.

- Experience with LDAP, Active Directory, RADIUS, SAML, and multifactor authentication (MFA) integrations.

- Strong understanding of Windows, Linux, and cloud environments (AWS, Azure, GCP).

- Experience in scripting and automation using PowerShell, Python, or REST APIs.

- Familiarity with network security concepts, firewalls, VPNs, and security monitoring tools.

- Strong analytical and problem-solving skills with the ability to handle high-pressure situations.

- Excellent verbal and written communication skills.

- CyberArk Certified Defender, Sentry, or Guardian certification.

- Experience in privileged access management strategy design and implementation.

- Knowledge of DevOps security and CI/CD pipeline integration.

- Experience with cloud-native security solutions and container security.