Privileged Access Engineer

This is a fully remote position, open to applicants in Australia.

📋 Description

• Become a member of Rest's Information Security team.

• As a Privileged Access Engineer, you will be essential in architecting, implementing, and overseeing Privileged Identity Access Management solutions throughout the Rest environment.

• Your main objective will be to deploy and manage the CyberArk Privileged Cloud solution to safeguard privileged access across the organization.

• This position demands a proactive and security-oriented approach, collaborating closely with IT, security teams, and business units to minimize risks, enforce compliance, and enhance privileged access controls.

• You will play a key role in the strategic advancement of Rest's IAM framework, ensuring our systems, applications, and data are shielded against evolving threats.

• Design, implement, and oversee the CyberArk Privileged Cloud solution to protect privileged accounts and sensitive credentials throughout the enterprise.

• Lead the installation, configuration, and maintenance of CyberArk Privileged Cloud components such as Vault, PAS, PVWA, CPM, PSM, and PTA.

• Monitor and maintain the daily operations of PAM systems to guarantee high availability, optimal performance, and robust security of privileged access.

• Manage the complete lifecycle of privileged accounts—provisioning, deprovisioning, credential rotation, and auditing—across platforms including CyberArk Privilege Cloud, Microsoft Entra ID, and SailPoint Identity Security Cloud (ISC).

• Perform regular privileged access reviews to ensure strict compliance with the principle of least privilege and relevant compliance requirements.

• Investigate and address security incidents or anomalies associated with privileged access, collaborating with the incident response team for rapid resolution and root cause analysis.

• Collaborate with IT and application teams to ensure seamless integration of PAM solutions with critical enterprise systems and tools.

• Develop and enforce policies governing privileged access in accordance with security frameworks and compliance standards.

• Oversee patching, upgrades, and troubleshooting of all CyberArk components to maintain a secure and stable environment.

• Provide technical expertise, guidance, and training to internal teams and end-users regarding best practices in identity and access management.

• Conduct regular audits and produce comprehensive reports on privileged account usage, policy violations, and compliance status.

• Identify and resolve issues related to authentication, access controls, and application integration within the broader identity ecosystem.

• Maintain thorough documentation of configurations, processes, and operational best practices across all supported identity platforms.

⛳️ Requirements

• Hands-on experience with implementing CyberArk Privilege Cloud solutions, including Core PAS, Endpoint Privilege Manager (EPM), Conjur, Secure Web Session (SWS), and Secure Infrastructure Access (SIA).

• Demonstrated expertise in integrating CyberArk with Active Directory, leading cloud platforms (AWS, Azure, GCP), and DevOps tools for efficient privileged access management.

• Experience with Microsoft Windows Server, Solaris, and Red Hat Enterprise Linux environments, along with PowerShell scripting and API integration for automating administrative tasks and optimizing system operations.

• Solid experience with Multi-Factor Authentication (MFA) and Single Sign-On (SSO) technologies.

• Familiarity with SIEM & ServiceNow integration to improve security monitoring and incident response.

• Strong infrastructure background, ideally within AWS, Azure, or GCP environments.

• Foundational knowledge of network architecture, including firewalls, DNS, whitelisting, and general networking principles.

• Excellent communication skills, capable of articulating complex architectural concepts and technical issues to both business and technical audiences.

• Strong analytical and problem-solving skills, able to translate complex requirements into effective PAM solutions that add business value.

🏝️ Benefits

• Opportunities for personal and professional development.

• Hybrid working model.

• Purchase leave scheme and gender-neutral 16 weeks paid parental leave.

• Super Contribution Continuation for 12 months of parental leave.

• Access to LinkedIn Learning.

• Income Protection Insurance.

• Rest Excellence awards (peer recognition awards based on Rest’s values and behaviors).

• Rest Stops - meeting-free breaks.