Senior CyberArk and Identity Access Management (IAM) Engineer
Newport Beach, California
Open to Remote
Contract
$62.5/hr - $67/hr
Hello
We are looking for a Senior CyberArk and Identity Access Management (IAM) Engineer – Remote role - This role requires USA Citizenship
Duration: 6+months with possibility of longer term extensions
Pay Rate: $65/hr on W2.
W2 – US Citizens ONLY – No C2C or 1099 at this time.
Position Overview:
Opportunity to lead critical security initiatives and influence the design and delivery of IAM and PAM solutions in a dynamic and collaborative environment.
Key Responsibilities
CyberArk Privileged Access Management
Design, deploy, and maintain CyberArk solutions, including Enterprise Password Vault (EPV), Privileged Session Manager (PSM), and Central Policy Manager (CPM).
Develop privileged access policies, procedures, and standards aligned with industry best practices and regulatory compliance (e.g., CMMC, PCI-DSS, HIPAA).
Monitor, audit, and optimize CyberArk configurations and policies to mitigate security risks.
Integrate CyberArk with identity providers (e.g., Active Directory, Azure AD, LDAP) and other IT infrastructure.
Automate PAM processes using scripting languages like PowerShell or Python.
Lead incident response activities for privileged access abuse or unauthorized access attempts.
Identity and Access Management
Support and enhance IAM tools and services, focusing on secure user privileges, credential management, and access control.
Configure and optimize identity systems, including Active Directory, Azure AD, LDAP, PKI, and SSO/2FA solutions.
Lead IAM-related projects, including domain consolidations, decommissioning, and cloud migrations.
Develop processes for IAM governance, compliance, and reporting.
Define and implement workflows for user provisioning, deprovisioning, and role management.
Troubleshoot and resolve IAM and PAM-related issues.
Collaboration and Leadership
Collaborate with IT, security, and compliance teams to design and implement IAM and PAM strategies.
Act as a subject matter expert on CyberArk and IAM technologies, providing training and mentorship to team members.
Ensure alignment of IAM solutions with organizational security and compliance requirements.
Represent the IAM function during audits, assessments, and stakeholder discussions.
Qualifications
Bachelor's degree in Computer Science, Information Systems, or related field
Active CyberArk Defender and Sentry certifications required
Additional certifications (e.g., Microsoft, AWS, Azure, CISSP) are a plus.
Experience
10+ years of IT experience with a focus on IAM and security solutions.
5+ years of experience with CyberArk PAM implementations and management.
Proven expertise in Active Directory, Azure AD, LDAP, PKI, SSO, and 2FA systems.
Hands-on experience with scripting (PowerShell, Python, Java or other) for automation and system integration.
Familiarity with ITAR/GOV-controlled environments and compliance frameworks (e.g., NIST, SOX, GDPR).
Skills and Abilities
Deep understanding of privileged access management principles, including least privilege enforcement and session monitoring.
Strong knowledge of Active Directory services, group policies, DNS, and certificate services.
Proficiency in integrating IAM tools with cloud environments (e.g., AWS, Azure).
Excellent troubleshooting, analytical thinking, and communication skills.
Ability to define and drive projects from concept to completion, ensuring alignment with deadlines.
We are looking for a Senior CyberArk and Identity Access Management (IAM) Engineer – Remote role - This role requires USA Citizenship
Duration: 6+months with possibility of longer term extensions
Pay Rate: $65/hr on W2.
W2 – US Citizens ONLY – No C2C or 1099 at this time.
Position Overview:
Opportunity to lead critical security initiatives and influence the design and delivery of IAM and PAM solutions in a dynamic and collaborative environment.
Key Responsibilities
CyberArk Privileged Access Management
Design, deploy, and maintain CyberArk solutions, including Enterprise Password Vault (EPV), Privileged Session Manager (PSM), and Central Policy Manager (CPM).
Develop privileged access policies, procedures, and standards aligned with industry best practices and regulatory compliance (e.g., CMMC, PCI-DSS, HIPAA).
Monitor, audit, and optimize CyberArk configurations and policies to mitigate security risks.
Integrate CyberArk with identity providers (e.g., Active Directory, Azure AD, LDAP) and other IT infrastructure.
Automate PAM processes using scripting languages like PowerShell or Python.
Lead incident response activities for privileged access abuse or unauthorized access attempts.
Identity and Access Management
Support and enhance IAM tools and services, focusing on secure user privileges, credential management, and access control.
Configure and optimize identity systems, including Active Directory, Azure AD, LDAP, PKI, and SSO/2FA solutions.
Lead IAM-related projects, including domain consolidations, decommissioning, and cloud migrations.
Develop processes for IAM governance, compliance, and reporting.
Define and implement workflows for user provisioning, deprovisioning, and role management.
Troubleshoot and resolve IAM and PAM-related issues.
Collaboration and Leadership
Collaborate with IT, security, and compliance teams to design and implement IAM and PAM strategies.
Act as a subject matter expert on CyberArk and IAM technologies, providing training and mentorship to team members.
Ensure alignment of IAM solutions with organizational security and compliance requirements.
Represent the IAM function during audits, assessments, and stakeholder discussions.
Qualifications
Bachelor's degree in Computer Science, Information Systems, or related field
Active CyberArk Defender and Sentry certifications required
Additional certifications (e.g., Microsoft, AWS, Azure, CISSP) are a plus.
Experience
10+ years of IT experience with a focus on IAM and security solutions.
5+ years of experience with CyberArk PAM implementations and management.
Proven expertise in Active Directory, Azure AD, LDAP, PKI, SSO, and 2FA systems.
Hands-on experience with scripting (PowerShell, Python, Java or other) for automation and system integration.
Familiarity with ITAR/GOV-controlled environments and compliance frameworks (e.g., NIST, SOX, GDPR).
Skills and Abilities
Deep understanding of privileged access management principles, including least privilege enforcement and session monitoring.
Strong knowledge of Active Directory services, group policies, DNS, and certificate services.
Proficiency in integrating IAM tools with cloud environments (e.g., AWS, Azure).
Excellent troubleshooting, analytical thinking, and communication skills.
Ability to define and drive projects from concept to completion, ensuring alignment with deadlines.
You will receive the following benefits:
- Medical Insurance - Four medical plans to choose from for you and your family
- Dental & Orthodontia Benefits
- Vision Benefits
- Health Savings Account (HSA)
- Health and Dependent Care Flexible Spending Accounts
- Voluntary Life Insurance, Long-Term & Short-Term Disability Insurance
- Hospital Indemnity Insurance
- 401(k) including match with pre and post-tax options
- Paid Sick Time Leave
- Legal and Identity Protection Plans
- Pre-tax Commuter Benefit
- 529 College Saver Plan
Motion Recruitment Partners (MRP) is an Equal Opportunity Employer, including Veterans/Disability/Women. All applicants must be currently authorized to work on a full-time basis in the country for which they are applying, and no sponsorship is currently available. Employment is subject to the successful completion of a pre-employment screening. Accommodation will be provided in all parts of the hiring process as required under MRP’s Employment Accommodation policy. Applicants need to make their needs known in advance.