Security Engineer IT - Remote

At Prime Therapeutics (Prime), we are a different kind of PBM, with a purpose beyond profits and a unique ability to connect care for those we serve. Looking for a purpose-driven career? Come build the future of pharmacy with us.

Job Posting Title

Security Engineer IT - Remote

Job Description

The Security Engineer is responsible for supporting, implementing, and operating privileged access management (PAM) controls that protect Prime’s systems from unauthorized access, misuse, alteration, or disclosure. This role is dedicated to securing privileged identities, credentials, and sessions across Prime’s applications, infrastructure, and cloud environments using CyberArk.

The engineer will perform the administration and ongoing operation of CyberArk PAM technologies, ensuring privileged access is tightly controlled, monitored, and auditable. This role partners closely with infrastructure, application teams, security, and business stakeholders to enable secure privileged access while maintaining operational stability, compliance, and a strong security posture.

Responsibilities

• CyberArk Privileged Access Management Administration

• Design, implement, and maintain CyberArk PAM solutions in alignment with Prime security standards and best practices.
• Administer and support CyberArk components including:
  • Enterprise Password Vault (EPV)
  • Password Vault Web Access (PVWA)
  • Privileged Session Manager (PSM)
  • CyberArk Secure Infrastructure Access (SIA)
  • Endpoint Privilege Manager (EPM)
  • Workforce Password Management (WPM)
     
• Manage CyberArk safes, platforms, and role‑based access controls for human and non‑human privileged accounts.
• Configure and enforce password policies, credential rotation schedules, and session controls for privileged accounts.
• Onboard and manage privileged accounts for servers, databases, applications, and service accounts.
  
  Privileged Access Operations & Support
• Provide L1/L2 operational support for PAM‑related incidents, including failed password rotations, access issues, and session connectivity problems.
• Perform root‑cause analysis of PAM failures and implement preventative controls to improve reliability.
• Monitor privileged access activity and alerts to identify anomalous behavior or policy violations.
• Produce audit evidence, compliance artifacts, and activity reports related to privileged access usage.
  
  Integration & Platform Management
• Integrate CyberArk with target systems including operating systems, databases, applications, and directory services.
• Support onboarding of new platforms, applications, and environments into CyberArk.
• Perform CyberArk version upgrades, patching, and component maintenance to ensure platform stability and security.
• Collaborate with infrastructure and application teams to design secure privileged access patterns for new and existing systems.

Minimum Qualifications

• Bachelor's degree in Information Security, Computer Science or related area of study, or equivalent combination of education and/or relevant work experience; HS diploma from an accredited school or equivalent GED required

• 2 years of work experience in the Information Security field, or related Information Technology experience such as Server Engineering, Networking, Architecture or Application Development

Must be eligible to work in the United States without the need for work visa or residency sponsorship

Additional Qualifications

• Contribute to PAM documentation, security standards, and operational runbooks.
• Support privileged access lifecycle processes, including account creation, modification, review, and decommissioning.
• Participate in security incident response activities involving privileged account compromise or misuse.
• Support internal and external audits by providing technical explanations and evidence related to PAM controls.
• Serve as secondary or backup support for PAM services to ensure continuity and operational resilience.
• Identify opportunities to automate manual PAM processes and improve operational efficiency.

Preferred Qualifications

• 2–4 years of experience in IT security, cybersecurity, or related technical field
• Experience with vulnerability management, firewalls, or endpoint protection tools
• Experience with scripting languages (e.g., Python, PowerShell) to support security automation
• Relevant certifications (e.g., CompTIA Security+, CySA+, or equivalent) preferred

Every employee must understand, comply with and attest to the security responsibilities and security controls unique to their job, and comply with all applicable legal, regulatory, and contractual requirements and internal policies and procedures

Every employee must be able to perform the essential functions of the job and, if requested, reasonable accommodations will be made to enable employees with disabilities to perform the essential functions, absent undue hardship. In addition, Prime retains the right to change or assign other duties to this job

Potential pay for this position ranges from $74,000.00 - $118,000.00 based on experience and skills.

To review our Benefits, Incentives and Additional Compensation, visit our Benefits Page and click on the "Benefits at a glance" button for more detail (https://www.primetherapeutics.com/benefits).

Prime Therapeutics LLC is proud to be an equal opportunity and affirmative action employer. We encourage diverse candidates to apply, and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sex (including pregnancy), national origin, disability, age, veteran status, or any other legally protected class under federal, state, or local law.  

We welcome people of different backgrounds, experiences, abilities, and perspectives including qualified applicants with arrest and conviction records and any qualified applicants requiring reasonable accommodations in accordance with the law.

Prime Therapeutics LLC is a Tobacco-Free Workplace employer.

Positions will be posted for a minimum of five consecutive workdays.