Identity & Access Management Engineer

ams to improve our broader security posture, demonstrated by metrics

• Manage configuration, administration, and maintenance of CyberArk solution, including both the infrastructure and the application itself

• Oversee the relevant documentation and training required for privileged access management solutions and processes, including define and help develop policies and control standards

• Report progress and system health through metrics and KPIs that are risk-driven and operational in nature

• Address ticket queue and follow appropriate change management procedures

• Understand risk and make recommendations for enhancing systems security and processes

• Keep up on current security technologies and maintain awareness of industry trends and threats, and industry best practices, providing input focusing on IAM/PAM technologies, offer subject matter expertise where relevant

Your Qualifications:

• 5+ years of hands-on experience with CyberArk (CyberArk Cloud Platform, EPM, LCD, and CyberArk SaaS Cloud Base)

• 3+ years of experience implementing enterprise-wide privileged access management technology solution adoption across medium- to large-scale companies

• 3+ years of experience as a systems engineer at a medium- to large-scale company in Financial Services

• 1+ years of hands-on experience with IGA systems such as SailPoint

• Experience with password repository technologies and remote session governance, specifically with the policies that govern target system platforms

• Excellent knowledge in IAM & PAM ecosystem (technology, standards, implementations, migration, and operational)

• Strong experience installing, upgrading, configuring, operating, and troubleshooting experience with CyberArk AAM (CCP, CP, ASCP), EPV, PVWA, CPM, PSM, HTML5 Gateway, PSMP, PTA (with various versions)

• Strong experience in DNA, Discovery scan and automate account onboarding process

• Knowledge in various application integration with CyberArk through CPM custom plugin

• Integration experience with SailPoint, Database, SCIM, AWS, GCP, Azure, or Palo alto

• Scripting knowledge, PACLI, PowerShell, Python, JavaScript, AutoIt, REST API

• Bachelor's degree in information assurance, Computer Science, Cybersecurity, Information Systems, or related field

• CyberArk Certification (Defender and Sentry) is preferred

• Security industry certification (CISSP, SSCP, CISM, SANS GSEC, ECSA, ECSP, and Security+) is preferred

Compensation:

• $115,000 - $140,000 base salary per year in the state of WA. New hires should expect to start at the lower end of the range depending on experience

• Eligible for a discretionary bonus based on firm and individual performance

Why Fisher Investments:

We work for a bigger purpose: bettering the investment universe. We take great pride in our inclusive culture, our learning and development framework customized for every employee, and our Great Place to Work Certification. It's the people that make the Fisher purpose possible, and we invest in them by offering exceptional benefits like:

• 100% paid medical, dental and vision premiums for you and your qualifying dependents

• A 50% 401(k) match, up to the IRS maximum

• 20 days of PTO, plus 10 paid holidays

• Family Support programs including 8 week Paid Primary Caregiver Leave, $10,000 fertility, family forming, and hormonal health assistance, and back-up child, adult, and elder care

• This is an in-office role. Based on your role, tenure, and performance eligibility you may have the opportunity to participate in our hybrid work from home program. This program is subject to change.

FISHER INVESTMENTS IS AN EQUAL OPPORTUNITY EMPLOYER