ABOUT THE TEAM

The RealPage Information Security Operations team monitors and manages risks associated with threats and vulnerabilities faced by our infrastructure, platforms, and systems.  We work closely with our teammates from IT, Product Development, and across the business to coordinate and execute our vulnerability management and incident response strategies and capabilities.  We work with industry-leading tools and implement creative solutions to complex problems.

SUMMARY

As the CyberArk Security Engineer III, you will be the main point of contact on the InfoSec team for all queries related to Privileged Access Management (PAM). Success in this position will be measured by your ability to perform critical functions within CyberArk such as integrating applications, platform management, version upgrades, and assisting with troubleshooting when there is a problem. The primary focus of this role will be maturing PAM strategy, infrastructure, and knowledge. In addition, you will also be expected to perform a periodic user access reviews to ensure regulatory compliance and provide guidance to other teams on best practices within the PAM space. Experience with CyberArk is essential for this role. Compliance or audit experience is desired, but not required.

PRIMARY RESPONSIBILITIES

Be the point of contact for CyberArk related issues or concerns. Perform basic troubleshooting for any PAM managed applications. Mature existing on-prem CyberArk infrastructure by integrating and on-boarding additional technologies and teams. Perform user access reviews for various RealPage applications on a quarterly basis. Creation of custom connectors, platforms, and CPM plugins required to support further integration between CyberArk and proprietary and nonproprietary technologies. Automation of PAM workflows related to reporting, ticketing systems, and the privileged account life cycle.     

REQUIRED KNOWLEDGE/SKILLS/ABILITIES

Bachelor's degree and minimum 4 years of experience in Information Security, Information Assurance and/or Cyber Security space. Additional relevant experience and professional certifications will be considered in lieu of a degree. 2 years of experience with CyberArk On-Prem Core PAS solution. Experience with common network protocols (HTTPS, LDAPS, RDP, SSH) and networking appliances (firewalls, load balancers). Experience with integration of Active Directory, Linux, Windows, VMWare, Databases, and web applications into CyberArk on-prem Core PAS environment. Experience with the deployment and administration of CyberArk's Endpoint Privilege Manager (EPM). Excellent verbal and written communication skills with a wide range of audiences including executives, business stakeholders and IT team members. Must be a critical thinker with strong problem-solving skills. Knowledge and understanding of relevant legal and regulatory requirements. Knowledge of information security management frameworks, such as ISO 27001, ITIL, COBIT or NIST. High degree of initiative, dependability, and ability to work independently. Ability to plan and execute at an architectural     level and provide justification and documentation behind architectural choices to leadership. Proven ability in security process and organizational design; current understanding of Industry trends and emerging threats; and knowledge of incident response methodologies and technologies.

PREFERRED KNOWLEDGE/SKILLS/ABILITIES

Advanced degree in applicable field. Professional information security certification, such as CompTIA's Sec+, GIAC's GSEC, and Cisco's CBROPS. Knowledge of common security frameworks and regulations including FFIEC, NYDFS and NIST Cybersecurity Framework. Experience automating tasks using scripting languages (Python, Powershell)