IAM Engineer (CyberArk) (Duluth)

We are seeking a highly skilled and versatile IAM Engineer with hands-on experience with CyberArk. This individual will play a critical role in designing, implementing, and maintaining secure and scalable identity solutions, integrating core platforms like Workday, ServiceNow, Active Directory / Entra ID, and modern authentication protocols such as SSO, SAML, and OIDC.

RESPONSIBILITIES

• Administer, configure, and maintain CyberArk Privileged Access Security (PAS) components, including the Password Vault, Central Policy Manager (CPM), Privileged Session Manager (PSM), and Privilege Cloud.
• Develop, implement, and enforce privileged access policies (password rotation, credential check-in / out, session monitoring, dual-control workflows, etc.) in alignment with security and compliance requirements.
• Monitor, troubleshoot, and optimize CyberArk operations, including CPM failures, PSM session issues, vault connectivity challenges, and component health.
• Integrate CyberArk with IAM ecosystem tools such as SSO / IdP solutions, PAM automation frameworks, AD / LDAP, SIEM platforms, and DevOps tools.
• Manage IAM solutions across multiple domains, ensuring secure and efficient identity lifecycle management.
• Administer and optimize Active Directory (AD) and Microsoft Entra ID (formerly Azure AD), including app registration, conditional access, and entitlement management.
• Configure and troubleshoot Entra ID app integrations, including application proxy and SCIM provisioning.
• Monitor IAM systems and logs for anomalies, ensuring compliance and audit-readiness.

EXPERIENCE

Please apply, if interested!