Lead PAM (Privileged Access Management) / CyberArk SME (m/f/d) - Remote
01.12.2020 / asap
- Owns and runs the Global Privileged Access Management (GPAM) factory team to systematically onboard admin teams into CyberArk
- Meets financial objectives by forecasting factory throughput; preparing monthly budgets; analysing variances; initiating corrective actions.
- Own and constantly review/refine the admin team onboarding process to select and onboard the admin team to the Global Privileged Access Management (GPAM) platform, CyberArk.
- Responsibilities will include, but is not limited to:
- Admin Team to be onboarded selection process and criteria
- Interface with management for support and decision making
- Escalate issues leading to factory roadblocks/delays
- Communication plans to admin teams on the upcoming change and transition process
- Techniques to identify current access needed to perform Admin tasks in the Windows local, Windows Active Directory (AD), LINUX, or other environments administered
- Techniques to create new sets of access controls (OUs, Groups, etc.) in the Windows local, Windows AD, LINUX, or other environments to support future state PAM for the admin team
- Techniques to create new accounts, assign them to newly created access controls, and onboard them into CyberArk Assign appropriate owners and manage accounts and access controls over time (new server is added, server is removed, upgrades, etc.)
- Plans to organize CyberArk safes for each admin team and set of target systems
- Change management when business org changes occur (admin teams split, admin teams merge, new outsourcer, etc.) with reference to GPAM
- Review plans for core CyberArk feature usage to incorporate into admin training (password rotation, requests, check out/check in, session monitoring and recording, auditing, etc.)
- Review plans to assist admins in transitioning to the new GPAM approach (training on usage, planning for migration of utilities presently allocated to local logins/user accounts, tips and tricks, and benefits)
- Eliminate redundant/outdated access upon successful transition of admin team to GPAM
- Capture Key Performance Indicators (KPIs) and build GPAM management report that can demonstrate, quantitatively, progress being made (persons, systems, groups, etc.)
- Review success criteria / success factors for GPAM onboarding factory
- Note gaps, risks, and make suggestions to GPAM Factory Process
- Over 5 years’ experience within a similar role preferably in financial services onboarding teams onto CyberArk, leading a migration of privilege access.
- A proactive self-starter who can develop and maintain effective working relationships with the mangers of admin teams being onboarded, the factory team and stakeholders from across the organisation at varying levels of seniority.
- Minimum of 5 years of related program and portfolio management experience.
- Experience in leading an initiative to onboard privilege access to a PAM tool (preferably CyberArk)
- Experience of leading a successful global privileged access control change program within a multinational organisation
- Experience of managing a team of project/technical professionals
- Experience of budget management and financial forecasting
- Experience producing materials and engaging in program updates to management stakeholders
- Ability to prioritize, focus and execute tasks in a timely manner
- Ability to work in a team-oriented, collaborative environment
- Strong knowledge of CyberArk
- Experience of producing high quality documentation, briefing papers, spreadsheets, reports and presentations
- Experience of management of effective governance
- Sentry or above CyberArk qualification (nice to have)