Privileged Access Engineer

🔥 0 minutes ago

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Rest

WebsiteLinkedInAll Job Openings

201 - 500 employees

Founded 1988

💸 Finance

Finance • Retirement

Rest is an award-winning superannuation fund in Australia, offering a range of services aimed at managing and growing retirement savings for its members. Founded in 1988, Rest prioritizes its members by directing profits back to them and offers competitive long-term investment performance. Rest provides tools and resources to help members manage their super, including investment options, insurance, and retirement planning services. With a focus on responsible investing, Rest seeks to create a fairer super system and retirement outcomes.

📋 Description

• Join Rest's Information Security team • As an Privileged Access Engineer, you will play a critical role in designing, implementing, and managing Privilege Identity Access Management solutions across the Rest environment. • Your primary focus will be on deploying and maintaining CyberArk Privileged Cloud solution to secure privileged access throughout the enterprise. • This role requires a proactive and security-focused mindset, working closely with IT, security and the business to mitigate risks, enforce compliance, and optimize privileged access controls. • You'll contribute to the strategic evolution of Rest's IAM landscape, ensuring that our systems, applications, and data remain protected against emerging threats. • Design, implement, and manage CyberArk Privileged Cloud solution to secure privileged accounts and sensitive credentials across the enterprise. • Lead the installation, configuration, and maintenance of CyberArk privileged Cloud components including Vault, PAS, PVWA, CPM, PSM, and PTA. • Monitor and maintain daily operations of PAM systems to ensure high availability, optimal performance, and robust security of privileged access. • Oversee the full lifecycle management of privileged accounts—provisioning, deprovisioning, credential rotation, and auditing—across platforms such as CyberArk Privilege Cloud, Microsoft Entra ID, and SailPoint Identity Security Cloud (ISC). • Conduct regular privileged access reviews, ensuring strict adherence to the principle of least privilege and compliance requirements. • Investigate and respond to security incidents or anomalies related to privileged access, working closely with the incident response team for swift resolution and root cause analysis. • Partner with IT and application teams to integrate PAM solutions seamlessly with critical enterprise systems and tools. • Develop and enforce policies governing privileged access in line with security frameworks and compliance standards. • Manage patching, upgrades, and troubleshooting of all CyberArk components, ensuring a secure and stable environment. • Provide technical expertise, guidance, and training to internal teams and end-users on best practices in identity and access management. • Perform regular audits and generate detailed reports on privileged account usage, policy violations, and compliance status. • Identify and resolve issues related to authentication, access controls, and application integration within the broader identity ecosystem. • Maintain comprehensive documentation of configurations, processes, and operational best practices across all supported identity platforms.

🎯 Requirements

• Hands-on experience implementing CyberArk Privilege Cloud solutions, including Core PAS, Endpoint Privilege Manager (EPM), Conjur, Secure Web Session (SWS) and Secure Infrastructure Access (SIA). • Proven expertise in integrating CyberArk with Active Directory, major cloud platforms (AWS, Azure, GCP), and DevOps tools for seamless privileged access management. • Experience with Microsoft Windows Server, Solaris, and Red Hat Enterprise Linux environments, PowerShell scripting and API integration for automating administrative tasks and streamlining system operations. • Solid experience with Multi-Factor Authentication (MFA) and Single Sign-On (SSO) technologies. • Familiarity with SIEM & ServiceNow integration to enhance security monitoring and incident response. • Strong infrastructure background, preferably within AWS, Azure, or GCP environments. • Foundational knowledge of network architecture, including firewalls, DNS, whitelisting, and general networking principles. • Excellent communication skills, with the ability to explain complex architectural concepts and technical issues to both business and technical audiences. • Strong analytical and problem-solving abilities, capable of translating intricate requirements into effective PAM solutions that drive business value.

🏖️ Benefits

• Personal and professional development opportunities • Hybrid working • Purchase leave scheme and gender neutral 16 weeks paid parental leave • Super Contribution Continuation for 12 Months of parental leave • Linkedin Learning • Income Protection Insurance • Rest Excellence awards (peer recognition awards based on Rest’s values and behaviours) • Rest Stops - meeting free breaks