Privileged Access Management Engineer (Cyber Security Engineer)

The Role

In this role, you will be responsible for growing and maturing Moderna’s Privileged Access Management (PAM). The individual must have a proven track record in delivering identity solutions that are functional, secure, scalable, and reliable. As a member of a small team in a fast-paced environment, this role will require both strong intellectual agility and hands-on technical skill.

The ideal candidate will have in-depth experience with CyberArk platform and its various integrations across on-prem and cloud environments.

Here’s What You’ll Do

• Engineering SME for the privileged access management program, managing the CyberArk platform and all its components, including configuration, administration, and maintenance.

• Collaborate with business units and engineering teams to understand their needs and translate them into technical requirements and designs for PAM systems and processes.

• Conduct interviews and collect pertinent information from applications, services, and teams to prepare for CyberArk onboarding activities

• Articulate business & functional requirements based on evolving best practices and technologies

• Work with devops/system/network/security administrators, and others to ensure privileged access management standards are followed

• Perform application integration assessments and advise on integration options.

• Manage the onboarding of accounts into CyberArk, adhering to a logical design framework

• Develop and maintain end-user documentation and provide relevant training.

• Develop detailed architecture, standards, design, and implementation documentation.

• Analyze the current PAM environment to identify technical and operational opportunities and develop continuous improvement action plans.

• Participate in disaster recovery, capacity planning, performance monitoring, and maintenance to ensure high availability.

• Work with the broader Cybersecurity and governance organizations to ensure policies and standards are properly followed by the PAM solutions

• Regularly review and enhance PAM policies and procedures to ensure security compliance.

• Create and support security policies, standards, and processes related to PAM

• Stay current with industry trends and emerging technologies to ensure the organization's IAM strategy remains effective and up-to-date.

• Contribute to the overall security of the organization by adhering to security policies and procedures

• Provide 24x7 support as needed for emergency situations and planned maintenance activities

Here’s What You’ll Need (Minimum Qualifications)

• BS level technical degree or equivalent experience required; Computer Science or Math background preferred

• 8+ years in the technology field, with 4-6+ years working in the identity and access management domain

• 3+ years of experience with CyberArk and Privileged Cloud technologies including hands-on experience with account and safe management, CyberArk administration and configuration, management and troubleshooting of the various CyberArk Privileged Cloud components.

• Hands-on experience with DevOps and Agile methodologies, including implementation and administration of CyberArk’s secret management technologies such as Credential Provider, Secrets Hub and Conjur (Cloud or Enterprise).

Here’s What You’ll Bring to the Table (Preferred Qualifications)

• Experience with Privileged Access Management principles, best practices, and technologies

• Familiarity with JIT, Least privileged and dynamic privilege concepts

• Strong understanding of virtualization and cloud platforms with knowledge of AWS infrastructure and architecture. Familiarity with other cloud platforms, such as Azure, or GCP a plus.

• Knowledge of both Windows and Unix platforms, with programming (PowerShell, etc.) a plus.

• Understanding of DevOps pipeline and CI\CD tools

• Knowledge and understanding of APIs, specifically RESTful APIs, and familiarity with service-oriented architecture and web services integration.

• Self-starter with ability to work in a team environment, with demonstrated ability to manage multiple competing tasks simultaneously and complete work within allocated timeframes

• Strong knowledge of Information Security frameworks and security architecture frameworks.

• Strong analytical and problem-solving skills

• Ability to work independently and as part of a team

• Relevant certifications such as CISSP, CISM, or CISA are a plus

• CyberArk certification a plus

• Experience with GxP environments and regulatory requirements

• Understanding of security risks and implementation of mitigating controls, and ability to convey risk to all levels of the business, from management to operations and development teams

• Excellent communication and interpersonal skills, including writing and presentation skills

• Embrace a culture of continuous service improvement and service excellence

• A desire to make an impact as part of a high-growth, transformational company that is Bold, Relentless, Curious, and Collaborative.

Moderna is pleased to provide you and your family with a comprehensive and innovative suite of benefits, including:

• Highly competitive and inclusive medical, dental and vision coverage options
• Flexible Spending Accounts for medical expenses and dependent care expenses
• Lifestyle Spending Account funds to help you engage in personal enrichment and self-care activities
• Family care benefits, including subsidized back-up care options and on-demand tutoring
• Free premium access to fitness, nutrition, and mindfulness classes 
• Exclusive preferred pricing on Peloton fitness equipment
• Adoption and family-planning benefits
• Dedicated care coordination support for our LGBTQ+ community
• Generous paid time off, including:
  •    Vacation, sick time and holidays
  •    Volunteer time to participate within your community
  •    Discretionary year-end shutdown
  •    Paid sabbatical after 5 years; every 3 years thereafter
• Generous Paid Leave offerings, including 18 weeks of 100% paid parental leave for all new parents
• 401k match and Financial Planning tools
• Moderna-paid Life, LTD and STD insurance coverages, as well as voluntary benefit options
• Complimentary concierge service including home services research, travel booking, and entertainment requests
• Free parking or subsidized commuter passes
• Location-specific perks and extras!

About Moderna

Since our founding in 2010, we have aspired to build the leading mRNA technology platform, the infrastructure to reimagine how medicines are created and delivered, and a world-class team. We believe in giving our people a platform to change medicine and an opportunity to change the world. 

By living our mission, values, and mindsets every day, our people are the driving force behind our scientific progress and our culture. Together, we are creating a culture of belonging and building an organization that cares deeply for our patients, our employees, the environment, and our communities.

We are proud to have been recognized as a Science Magazine Top Biopharma Employer, a Fast Company Best Workplace for Innovators, and a Great Place to Work in the U.S.

As we build our company, we have always believed an in-person culture is critical to our success. Moderna champions the significant benefits of in-office collaboration by embracing a 70/30 work model. This 70% in-office structure helps to foster a culture rich in innovation, teamwork, and direct mentorship. Join us in shaping a world where every interaction is an opportunity to learn, contribute and make a meaningful impact.

If you want to make a difference and join a team that is changing the future of medicine, we invite you to visit modernatx.com/careers to learn more about our current opportunities.

Moderna is a smoke-free, alcohol-free and drug-free work environment.

Moderna is a place where everyone can grow. If you meet the Basic Qualifications for the role and you would be excited to contribute to our mission every day, please apply!

Moderna is proud to be an equal opportunity workplace and is an affirmative action employer.

Moderna is committed to equal employment opportunity and non-discrimination for all employees and qualified applicants without regard to a person's race, color, sex, gender identity or expression, age, religion, national origin, ancestry or citizenship, ethnicity, disability, military or protected veteran status, genetic information, sexual orientation, marital or familial status, or any other personal characteristic protected under applicable law. Moderna is an E-Verify Employer in the United States. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements.

Belonging, Inclusion, and Diversity are critical to the success of our company and our impact on society. We’re focused on attracting, retaining, developing, and advancing our employees and believe that by cultivating diverse experiences, backgrounds, and ideas, we can provide an environment where every employee is able to contribute their best.

Moderna is committed to offering reasonable accommodations to qualified job applicants with disabilities. Any applicant requiring an accommodation in connection with the hiring process and/or to perform the essential functions of the position for which the applicant has applied should contact the Accommodations team at leavesandaccommodations@modernatx.com.  (EEO/AAP Employer) 

-