PAM Centrify

Job Description Centrify PAM DevOps

The Centrify PAM DevOps is responsible for the ongoing support and service maturity of the IAM program. Must have experience with Centrify Privileged Access Management and / or an equivalent tool like Thycotic, CyberArk, BeyondTrust PAM etc. maintaining any custom code / config and the following capabilities / functions within the platform and IAM service as a whole.

Directory Integrations & Services

Delegated Authentication

Multifactor Authentication / Adaptive MFA

Risk & Behavior-based authentication

Tenant Customizations

Centrify PAM Command Line

Python & PowerShell

Automated Discovery of systems & privileged accounts

Automated Password Rotation & Reconciliation

Systems Connection Management

Privileged Session Management & Recording

Auditing & Monitoring

IAM Standards like Header-Based / Kerberos / SAML2.0 / OpenID-Connect / OAuth2.0 / FIDO2

PAM Integration with CI / CD Tools such as Jenkins / Terraform / GitHub / SonarQube etc.

Participate in and / or lead user acceptance testing and bug-related engineering efforts.

What You Will Do

Will need to create vaults.

Design and Develop IAM solutions based on Centrify PAM platform

Hands-on experience with Centrify Privileged Access Management - Experience in installation and configurations of Connectors, Directory Integrations, Radius endpoints, OAuth tokens etc.

Develop and maintain privileged user onboarding workflows, password check in / out, rotation & reconciliation

Must have a thorough understanding and work experience for Single Sign-On, Access management, Identity Federation, Multi-factor authentication (MFA), Risk-based authentication (RBA).

Must have a thorough understanding and work experience for capabilities such as SSH, RDP, SMB, Telnet etc. & Header based Single Sign On, SAML, OIDC, OAuth & Radius, etc.

Hands-On experience with Centrify UI customization, writing PowerShell or python scripts to automatically discover systems, accounts for privileged access mgmt. & also integrate with target systems like CI / CD pipeline or target applications

Experience with PAM self-service registration integration with Identity management system like SailPoint IdentityIQ.

RESTful & SCIM API development and maintenance for exposing core PAM functions

Develop and maintain privileged access provisioning and related services

Support integration with Active Directory and other Identity Stores

Good knowledge of directory servers and LDAP protocol technologies (Active Directory)

Experience with the operating system (Unix / Linux / Windows) commands, utilities & scripting

Good understanding of TCP / IP and RESTful API experience with infrastructure, network, database, or security troubleshooting & remediation experience with scripting with PowerShell or GO, Python, Etc.

Experience with DevOps tools such as Jenkins, Artifactory, GitHub, SonarQube, Terraform, Bitbucket, Dockers, Ansible, Kubernetes, etc.

Provide support for all design, implementation, and maintenance activities related to Centrify PAM

Implement monitoring of PAM application / service components using tools like Dynatrace etc.

Certifications

Good to have an IAM or PAM certification

Good to have any Security certification