CyberArk Systems Engineer

As a CyberArk Systems Engineer, you will support the Hosting Services and Identity and Access Management, Domain Name Services, Network at the OIT's Division of Infrastructure Services (DIS) at Health Resources and Services Administration (HRSA).

The CyberArk Systems Engineer will be performing installations, upgrades, monitoring, maintenance, troubleshooting, patching, securing and repair of CyberArk servers. The right candidate will work well with a team, always exhibit excellent customer service skills and be self-motivated seeking ways to improve the environment.

HOW YOU WILL MAKE AN IMPACT:

• Provide system requirements for CyberArk production implementation.
• Deploy, configure, and implement CyberArk components.
• Design and implement Privileged Identity Management (PIM) solutions using CyberArk to secure privileged access to critical systems.
• Integrate CyberArk with Active Directory for automated management of privileged AD accounts.
• Develop advanced PowerShell scripts to automate CyberArk administrative tasks, including account provisioning, de-provisioning, vault management, and policy enforcement.
• Configure and manage PIM policies within CyberArk to automate the management of privileged accounts, ensuring compliance with security standards
• Integration of RSA Secured ID using native Radius authentication with CyberArk.
• Setup of Privileged Cloud Connector Components
• Fix and troubleshoot failed verified Accounts and failed password change errors.
• Manage Active Directory user and group privileges through CyberArk
• Deploying and managing EPM on endpoint machine.
• Troubleshooting PSM connection issues and HTML5 Gateway issues.
• Manage new domain controller hosts with CyberArk environments.
• Support customer to build robust and secure IAM environments.
• Integration of CyberArk with ServiceNow Ticketing system.
• As part of a24/7 on-call rotation (approx once every 2 months), perform the activities associated with the management of dedicated ticket queues to include prioritization of work and assignment to technical resources for resolution of end user concerns

WHAT YOU'LL NEED TO SUCCEED

• Bachelor's degree in IT related field
• 5+ years of CyberArk experience
• Experience with installing, upgrading and troubleshooting CyberArk components such as PSM, PSMP, PVWA, CPM, SCIM, CyberArk vault
• Hands-on CyberArk upgrade or migration experience
• Experience with CyberArk setup for RDP and SSH sessions
• Require CyberArk related firewall/network configuration knowledge
• Be able to troubleshoot CyberArk related issues looking at CyberArk and/or network/firewall logs (we are not looking for network expert but the engineer must be experienced to look at logs from CyberArk/Splunk/Network to isolate CyberArk)
• Hands-on experience with configuring and troubleshooting CyberArk auto discovery for domain joined computer/server accounts
• Experience with certificate management for all CyberArk components
• Knowledge about configuration of VIPs for CyberArk PVWA/PSM/PSMP servers
• Expertise in troubleshooting CyberArk related issues such user failed account reconciliation, failed verification for both Linux and Windows targets including network related issues with CyberArk.
• Experience with CyberArk environment across muti-domain Active Directory
• Hands-on RHEL Linux experience to manage PSMP servers
• Effective and proactive communication with users and management on CyberArk related matters
• Hands-on expertise with RHEL 8.x/9.x
• Good understanding of Active Directory
• PowerShell scripting: 2+ years of experience
• Work on ServiceNow tickets
• Experience with detailed technical implementation documents and SOPs

IT WOULD BE GREAT IF YOU ALSO HAD:

• Infoblox DNS - 2+ years
• Hands on experience with Active Directory - 2+ years
• share your desire to drive operations forward.

LOCATION: Remote. Candidates in the DMV area, preferred.

CLEARANCE:

Ability to obtain a Public Trust: candidate must have lived in the United States for at least three (3) out of the last five (5) years and pass a public trust background investigation.

WHAT GDIT CAN OFFER YOU

• Full-flex work week.
• 401K with company match.
• Customizable health benefits packages.
• Collaborative teams of highly motivated critical thinkers and innovators.
• Internal mobility team dedicated to helping you own your career.
• Rewards program for high-performing employees.

#GDITFedHealthJobs

Work Requirements