Title:  SRE ISE PAM

Identity Management and Access Control (IMAC) Privileged Access Management (PAM) team:

PAM Team is responsible for Innovating & Sustaining the centralized PAM Solution within the Worldline Group.

• Onboardings apps / systems into the centralized PAM tool

• Enhancing the PAM tool / Automating workflows

• Advanced Troubleshooting / Patch management / End to End Infra management

The PAM Information Security Engineer will be working together with the other international team members in the realization of their objectives, continuous improvement plans, and recognizing and closing security gaps (audits/ risks). It is key that [he / she / they] support the PAM Team in meeting their delivery objectives and thus achieving and maintaining excellent levels of operational performance and customer satisfaction.

About the team

We have peers with the ability to execute tasks effectively and efficiently while ensuring both time and quality. We are not using the traditional ways to complete tasks but rather looking for more creative ways to manage and onboard new assets; like re-using platform policies and components / existing plugins etc. instead of building / designing from scratch. We are committed to continuous improvement. We are always looking for new and innovative ways to improve quality, automate, reduce costs, build excellent solutions, and increase customer satisfaction.

Day-to-day responsibilities include for a PAM Information Security Engineer Role

• Actively participating in DevOps activities: daily stand up, retrospective, refining backlog, sprint review, planning and delivering sprint goals
• Delivery of new features / enhancements / automation on the PAM tool.
• Advanced troubleshooting and delivering solutions for better day-to-day usage of the PAM tool
• Producing PAM documentation
• Supporting and improving the architecture of our PAM tool by proposing new design
• Supporting and advising all our other internal customers with regard to their non-personal privileged Accounts
• Actively working with fellow colleagues within DevOps team to ensure timely and quality delivery of objectives including Architects, Team Lead etc.
• Proactively sharing knowledge and assisting fellow colleagues as and when needed; including knowledge sharing via various channels / tech forums etc.

General requirements:

At least 4-5 years’ experience in Privileged Access Management:

• Communication skills
  • Excellent level of English is required in a global perimeter
  • Good written and verbal communication skills, including the ability to communicate in an articulate manner to a wide range of audiences.
• Independent worker but also a team player. Have the ability to work globally with functional as well as technical teams in a dynamic environment.
• Proactive and takes responsibility.
• Good listener, innovative and eager to learn.
• Have good analytical and advanced troubleshooting skills.
• Willingness to run On-call (standby) duty for PAM.

Must haves:

• Hands on experience with one or more PAM tools like CyberArk, Delinea Secret Server, Beyond Trust, etc.
• Familiar with Agile/Scrum/DevOps way of working.
• Knowledge of user stores (LDAP’s / AD etc.).
• Understanding of network protocol (IP, DHCP, DNS, BGP, Load balancing).
• Experience working with Windows, Linux (Red Hat).
• Experience with Monitoring & alerting tools (e.g., Prometheus, Grafana, Datadog,
• PagerDuty, New Relic,).
• Tools: JIRA, Confluence, Service line.
• Familiarity with usage of webservices (like SOAP, REST, etc.).
• Familiar with compliancy (PCI DSS, ISO 27001, KFS, ISAE).
• Familiar with Scripting (Toad, PowerShell).
• Experience to work with Terraform.
• Experience to work with Puppet.

Nice to have:

• Experience of CyberArk components (Vault, PVWA, CPM, PSM, DR.
• Experience with creating CyberArk custom Plugins.
• Certifications in cloud provider technologies (AWS, GCP).
• Understanding of compliance and security best practices in a cloud environment.