Privileged Access Management Engineer

Who we are

American International Group, Inc. (AIG) is a leading global insurance organization. AIG member companies provide a wide range of property casualty insurance in approximately 70 countries and jurisdictions. These diverse offerings include products and services that help businesses and individuals protect their assets and manage risks.

We’re also committed to making a positive difference for our colleagues and in the communities where we work and live. We encourage colleagues to give back to the causes they care most about, supporting these efforts through our Volunteer Time Off and Matching Grants Programs.

Get to know the business

At AIG, technology is at the heart of everything we do, from underwriting risks to processing claims. The Information Technology team equips our colleagues with the latest tools to complete their work efficiently and with the highest standards of excellence. The team is responsible for shielding the company’s systems from security risks, while designing technology strategies that enable AIG’s businesses to achieve their goals. AIG’s Information Technology functions include enterprise architecture, software and systems engineering, cybersecurity, and technology risk and compliance.

About the role

The Privileged Access Management team is situated within the AIG Global Identity and Access Management team. The team is currently focused on increasing the adoption of the selected Enterprise Privileged Access management tool, CyberArk, to reduce the overall risk landscape at AIG.

You will partner closely with the PAM Principal Engineers and the development teams to implement strong PAM controls, protect credentials and secrets and mature AIG’s posture using the zero-trust framework.

What You Will Do:

• The PAM (Privileged Access Management) Engineer role is essential to supporting business requests for securing and managing privileged accounts.
• Plays a pivotal role in supporting the principal engineers by integrating applications with the PAM tool and extending capabilities of the PAM service, ensuring the management of Privileged Accounts and Secrets.
• Work directly with our users, being the front line of Privileged Access.
• Partner with engineering and architecture teams to scope requirements and capabilities for PAM that are out of the box. Installing and implementing marketplace plug-ins as needed to support adoption.
• Support the Principal Engineers to identify opportunities to enhance the PAM capabilities and contribute to process improvements.
• Provide training to end-users, Admins and DevOps, on CyberArk functionality and capabilities.
• Leverage knowledge of Privileged Access to maintain a clean and compliant environment.
• Implement robust monitoring and alerting for the PAM tool and privileged access.
• Help to define, identify, and inventory privileged access within our environment and detect exceptions to our standards through automated reporting solutions.
• Make risk-based and data-driven decisions to achieve prioritized outcomes in alignment with PAM standard.

What You Will Need:

Qualifications

• Detail-oriented and self-motivated.
• Customer-focused with strong communication skills, having the ability to communicate technical concepts to a non-technical audience.
• Bachelor's degree in a Cybersecurity, Information Technology, or related field, such as Computer Science or Information Technology.
• In depth experience as a Privileged Access Management (PAM) hands-on practitioner, ideally with experience running an enterprise vault, such as CyberArk, with a strong track record of configuring and maintaining the solution.
• CyberArk Defender Certification
• Extremely proficient using CyberArk AAM
• Profound understanding of privileged access management concepts, identity and access management, and security best practices
• Hands on experience using ServiceNow and Active Directory
• Conjur Fundamentals certifications
• Experience administering Secrets and Key management solutions such as Hashicorp Vault, AWS Secrets Manager, Keyfactor, and Conjur
• Knowledge of common IT infrastructure technologies and concepts:
  • Directories: LDAP, Windows Active Directory, Azure AD, Okta, etc.
  • Operating Systems: Windows, Linux, Unix (including AIX and Solaris), etc.
  • Databases: Oracle, SQL, Postgres
  • Mainframes: RACF, z/OS
  • Network Protocols
• Familiarity with authentication security, such as MFA and certificates, a plus

#LI-AI

Reimagining insurance to make a bigger difference to the world

American International Group, Inc. (AIG) is a global leader in commercial and personal insurance solutions; we are one of the world’s most far-reaching property casualty networks. It is an exciting time to join us — across our operations, we are thinking in new and innovative ways to deliver ever-better solutions to our customers. At AIG, you can go further to support individuals, businesses, and communities, helping them to manage risk, respond to times of uncertainty and discover new potential. We invest in our largest asset, our people, through continuous learning and development, in a culture that celebrates everyone for who they are and what they want to become.

Welcome to a culture of belonging

We’re committed to creating a culture that truly respects and celebrates each other’s talents, backgrounds, cultures, opinions and goals. We foster a culture of inclusion and belonging through our flexible work arrangements, diversity and inclusion learning, cultural awareness activities and Employee Resource Groups (ERGs). With global chapters, ERGs are a cornerstone for our culture of inclusion. The diversity of our people is one of AIG’s greatest assets, and we are honored that our drive for positive change has been recognized by numerous recent awards and accreditations.

AIG provides equal opportunity to all qualified individuals regardless of race, color, religion, age, gender, gender expression, national origin, veteran status, disability or any other legally protected categories.

AIG is committed to working with and providing reasonable accommodations to job applicants and employees with disabilities.  If you believe you need a reasonable accommodation, please send an email to [email protected].  

Functional Area:

IT - Information Technology

AIG Employee Services, Inc.