Director Privileged Access Management Engineering

As an expert at DTCC, you will be responsible for the functional and technical design of business systems. Your role involves integrating business services & information security, driving industry-specific best practices & standards, understanding regulatory compliance needs, coordinating test planning & execution, providing leadership to AD teams, and acting as a technology liaison within DTCC. Your primary responsibilities will include: - Leading projects and teams, and conducting code reviews to set an example for your colleagues. - Playing a key role in developing and deploying the Cyberark solution. - Creating and enforcing Cyberark PAM policies and procedures to adhere to industry best practices and regulatory requirements. - Managing the CyberArk PAM platform, including Privileged Session Manager (PSM), Central Policy Manager (CPM), Password Vault Web Access (PVWA), and Vault. - Defining technology selection and application design decisions by considering performance, scalability, availability, security, and other key factors. - Modernizing legacy applications by migrating to public or private cloud infrastructure. - Leading design reviews sessions and collaborating with Infrastructure and Solution Architecture to choose an efficient hosting environment. - Ensuring that solutions adhere to security policies and standards of the firm and industry. - Conducting Proof of Concepts (POCs) for tools as needed. Your qualifications should include: - Minimum of 10+ years of experience in Information Security with at least 5 years in Privileged Access Management. - Bachelor's degree in Computer Science, Information Systems, or a related field, or equivalent experience. To succeed in this role, you will need the following talents: - Extensive experience with CyberArk PAM platform, including PSM, CPM, PVWA, and Vault. - Ability to understand architectural diagrams and design. - Advanced understanding of privileged user life cycle management and controls around privileged access. - Experience with AWS, Azure, and/or GCP IAM and PAM concepts. - Experience with troubleshooting issues with PAM solutions and applications. - Sound understanding of regulatory requirements and standards such as GDPR, FISMA, PCI, HIPAA, SOX, FICA, etc. - Ability to guide teams through sophisticated issues and drive resolution for issues within sophisticated and high-risk applications. - Ability to effectively translate technical information between vendors, IT management, and other internal and external IT teams. - Ability to work with all levels of management to define requirements associated with PAM services, incorporating security standard processes.,