Jobs search

IAM Engineer

PepsiCo • Plano, TX, US • $85.20k - $142.65k / year • 3w ago

Responsibilities

Provide Ops Support and contribute to the management of PAM Solution as detailed below:

Maintain DEV, ITE, and PROD environments
Ensure all environments are on the latest stable patches for all layers (application, OS, and Security)
Ensure all environments are healthy, accessible, and functional
Support hardware and software refreshes/upgrades coordinating with appropriate teams
Partner with vendors as appropriate on issues
Drive participation in the PAM onboarding process to ensure privileged accounts are managed appropriately, and password change requests are completed on time
Implement/deliver AOP and Function funded initiatives for PAM areas
Identify automation opportunities and gain efficiencies in the PAM services
Account Management
Enhance PAM onboarding and maintenance processes as appropriate
Develop/Manage processes to keep PAM onboarding process/lists evergreen for all sensitive and privileged access for platforms/applications in scope
Drive participation in the PAM onboarding process to ensure privileged accounts are managed appropriately, and password change requests are completed on time
Create, manage, maintain quarterly control processes for PAM area
Work with application owners, Controls team, as needed, and ensure PAM processes are kept up to date
Provide account management and remediation services for methodologies such as but not limited to the following:
Superuser Account Password Management (SAPM)
Application Access Management (AAM)
DAP (Dynamic Application Provider – formerly Conjur)
Endpoint Protection Manager (EPM)
SSH Key Management
Privileged Threat Analytics (PTA)

Compensation and Benefits:

• The expected compensation range for this position is between $85,200 - $142,650.

• Location, confirmed job-related skills, experience, and education will be considered in setting actual starting salary. Your recruiter can share more about the specific salary range during the hiring process.

• Bonus based on performance and eligibility target payout is 10% of annual salary paid out annually.

• Paid time off subject to eligibility, including paid parental leave, vacation, sick, and bereavement.

• In addition to salary, PepsiCo offers a comprehensive benefits package to support our employees and their families, subject to elections and eligibility: Medical, Dental, Vision, Disability, Health, and Dependent Care Reimbursement Accounts, Employee Assistance Program (EAP), Insurance (Accident, Group Legal, Life), Defined Contribution Retirement Plan.

Qualifications

Bachelor's degree preferably in engineering, Computer Science, Information Security with excellent communication skills and stakeholder management.
A minimum of 4 years plus experience in Privileged Access Management using (CyberArk, BeyondTrust)
A minimum of 8 + years in Identity & Access Management
Experience with developing, planning, and implementing a large-scale enterprise-level CyberArk infrastructure, including but not limited to the following components:
Enterprise Password Vault (EPV)
Privileged Session Manager (PSM)
Password Vault Web Access (PVWA)
Central Password Manager (CPM)
SSH Key Management
Endpoint Protection Manager (EPM)
Privileged Threat Analytics (PTA)
Experience implementing PAM in the cloud environment (Azure, AWS, GCP)
Knowledge of the following core concepts:
Principle of least privileged access
Principle of revocation of rights
Principle of Just in Time access
Experience with PIM governance and compliance, including the following:
Performing Privileged Access Reviews
Compliance Reporting
Access Control Processes
Experience working with large-scale, enterprise-level LDAP / Active Directory environments
Experience in programming/scripting disciplines like the following:
PowerShell
Python
Ability to demonstrate analytical and critical thinking, attention to detail, solution orientation in a fast-paced environment
Good written and oral communication skills in English
A team-focused mentality with the proven ability to work effectively with diverse stakeholders