IAM CyberArk Engineer II

Cox Automotive is seeking a IAM Cyber Ark Engineer II to join our team. In this pivotal role, you will be responsible for designing, implementing, and maintaining enterprise-grade Privileged Access Management (PAM) solutions using Cyber Ark technologies. You will ensure the protection, governance, and lifecycle management of privileged accounts across a diverse and complex technology landscape—ultimately strengthening our security posture and helping safeguard critical business systems.

• Implement, configure, and maintain Cyber Ark PAM solutions, including Privileged Access Security (PAS), Password Vault Web Access (PVWA), Central Policy Manager (CPM), and Privileged Session Manager (PSM).
• Onboard and manage privileged accounts, platforms, safes, and access policies.
• Configure password rotation, credential vaulting, and access control policies for privileged and service accounts.
• Integrate Cyber Ark with enterprise directories such as Active Directory and LDAP.
• Support onboarding of applications, databases, servers, and network devices into Cyber Ark.
• Monitor PAM operations, troubleshoot issues, and resolve incidents related to privileged access.
• Perform regular audits, access reviews, and compliance reporting for privileged accounts.
• Collaborate with security, infrastructure, and application teams to implement PAM best practices.
• Participate in PAM upgrades, patches, and platform maintenance activities.
• Develop and maintain technical documentation, operational procedures, and runbooks.

• Cyber Ark, CA PAM, SailPoint ISC (Preferred), Microsoft Entra, LDAP, and Venafi (Certificate Management / Machine Identity), Any IAM Tool ex. OIM/OAM.

• Bachelor’s degree in a related discipline and 2 years’ experience in a related field. The right candidate could also have a different combination, such as a master’s degree and up to 2 years’ experience; or 14 years’ experience in a related field.
• Hands‑on experience with Cyber Ark Privileged Access Management solutions.
• Understanding of privileged access concepts, authentication, authorization, and security controls.
• Understanding of authentication, authorization, single sign‑on (SSO), and LDAP best practices.
• Experience with Windows and Linux systems administration.
• Ability to troubleshoot and resolve complex security and access issues.
• Experience with Cyber Ark EPM, PTA, or Secrets Management.
• Experience with scripting or automation (Power Shell, Python).
• Familiarity with Active Directory, LDAP, and enterprise security standards.
• Understanding of Identity and Access Management systems and concepts.

USD 89,400. per year

Compensation includes a base salary of $89,400.00 - $. The base salary may vary within the anticipated base pay range based on factors such as the ultimate location of the position and the selected candidate's knowledge, skills, and abilities. Position may be eligible for additional compensation that may include an incentive program.

The Company offers eligible employees the flexibility to take as much vacation with pay as they deem consistent with their duties, the company's needs, and its obligations; seven paid holidays throughout the calendar year; and up to 160 hours of paid wellness annually for their own wellness or that of family members. Employees are also eligible for additional paid time off in the form of bereavement leave, time off to vote, jury duty leave, volunteer time off, military leave, and parental leave.