Identity and Access Management; IAM Engineer - CyberArk

Identity and Access Management (IAM) Engineer - Cyber Ark

Apply for the Identity and Access Management (IAM) Engineer – Cyber Ark role at Regions Bank.

At Regions, the Identity and Access Management (IAM) Engineer is responsible for working cross‑functionally across the organization with business and IT partners, as well as external service partners to deliver the Identity Governance and Administration (IGA) capabilities across Regions. This role includes role‑based access controls (RBAC), attribute‑based access controls (ABAC), access review/certification, automated provisioning and de‑provisioning, and access requests.

• Design, develop, test, implement, and integrate IAM systems and solutions.
• Ensure that solutions protect information resources against unauthorized use, inappropriate degrees of access, disclosure, damage and/or loss.
• Analyze and maintain data to ensure projects deliver on time.
• Maintain, patch, operate, and monitor IAM systems.
• Support and resolve system incidents, problems, and changes.
• Design and implement reusable strategies, decisions, service components, libraries and frameworks to support enterprise‑level IAM services.
• Onboard new applications and create custom workflows, rules, and reports based on business requirements.
• Create and analyze documentation of process, guidelines, standards, technical specifications, as well as draw network & system architecture diagrams.
• Leverage bash scripting to maintain the night processing script.
• Communicate project status, development issues/roadblocks, and requirements feasibility to project teams.

This position is exempt from timekeeping requirements under the Fair Labor Standards Act and is not eligible for overtime pay.

• Bachelor’s degree and six (6) years of experience in a related field.

• Advanced understanding of UNIX security, as it relates to user access and provisioning.
• Experience with Agile methodology and SDLC concepts/tools (Git, Atlassian stack).
• Experience with Linux/Unix, Windows, scripting (with programming languages such as Bash, Power Shell, or Perl), SQL, LDAP, and web services.
• Experience with one or more programming languages such as Java, C#, C/C++, Python, or JavaScript.
• Experience with role‑based access controls and configuring automated provisioning and deprovisioning.>
• Experience with SailPoint (version 7.0 or later) or another IGA/IAM platform.
• Recognized security industry certifications (CISSP, CIAM, etc.).
• Technical experience in systems integration or software engineering of identity and access management (IAM) solutions (such as Beyond Trust, Cyber Ark, AWS, Duo, OIM, Ping Identity, Radiant Logic, SailPoint, Okta, Active Directory, RACF).

• Demonstrated ability to multi‑task, be self‑initiated, and work independently.
• Excellent customer service and interpersonal skills.
• Excellent time management skills.
• Excellent organizational, research, analytical and/or problem‑solving skills to evaluate situations, make recommendations, and take effective action.
• Knowledge and skill in technical problem resolution.
• Strong attention to detail and outstanding analytical skills.
• Strong written and verbal communication skills.

We’re looking for a highly skilled engineer with deep experience in Cyber Ark and Privileged Access Management to help mature and scale our enterprise PAM program. The ideal candidate will bring strong technical expertise across Cyber Ark components, onboarding practices, and secure credential lifecycle management.

• Proven hands‑on experience with Cyber Ark components, including PVWA, CPM, PSM, CCP, SIA / DPA.
• Demonstrated ability to onboard and manage privileged accounts across Windows, Linux, database, and cloud (Azure, AWS) platforms.
• Expertise in Cyber Ark platform management, including safe design, policy configuration, account discovery, and credential rotation.
• Strong understanding of Privileged Access Management best practices, risk reduction strategies, and regulatory requirements (e.g., SOX, PCI, HIPAA).
• Experience supporting or leading Cyber Ark upgrades, DR/HA configurations,…