Security Engineer


Plymouth, MN, USA - 2043a

VITS is looking to identify a Security Engineer with following JD:
  • Lead the discovery process to gather onboarding requirements on KCI domain using CyberArk DNA tool and Remediant scans on 3M Domain. 
  • Identify privilege accounts that needed to be on-boarded and onboard accounts that pose highest level of risk to the organization. 
  • Design Architecture Requirements with collaboration of 3M and KCI infrastructure team’s, which should go through an ARK review process for Legacy KCI and get it approved. 
  • Gather existing connecters and platform requirements from 3M on-prem version CyberArk to leverage them in CyberArk SaaS implantation and evaluated the appetite for Custom Connectors. 
  • Define Monitoring and Reporting requirements for CyberArk SaaS. 
  • Define Backup & IT Continuity process requirements for CyberArk SaaS. 
  • Request servers to be deployed and setup a pilot build of CyberArk SaaS in 3M-KCI. 
  • Define connecter requirements with OKTA to implement SSO and MFA. 
  • Collaborate with CyberArk Professional Services to get the Windows Connecter setup on KCI On-Prem and be deployed with a pilot build. 
  • Perform UAT Testing on the KCI CyberArk SaaS pilot build and prepare process documents for user education. 
  • Support existing 3M on prem version of CyberArk by handling new Integration Requests and Incidents.  
  • Define SQL queries to extract and filter user data from CyberArk Database using MySQL. 
  • Design an API to delete multiple users in CyberArk for License Harvest. 
  • Design an API in postman to delete duplicates in a specific safe from CyberArk. 
  • Design an API to bulk onboard accounts into CyberArk. 
  • Collaborate with CyberArk to define a way to bulk move accounts from one safe to another in 3M CyberArk. 
  • Monitor 3M CyberArk on-prem version and perform audits on Quarterly basis. 
  • Patch CyberArk servers every month and Upgrade UTM firewalls for production servers. 
  • Implement and follow IT Continuity Plan for 3M CyberArk when 3M Data Center is down. 
  • Document and analyze all existing process of 3M CyberArk On-Prem version to replicate in CyberArk SaaS for KCI. 
  • Support another project, Hashi Corp being deployed in 3M China. 
  • Define Architecture and Authentication Requirements for Hashi Corp. 
  • Define Monitoring and Reporting requirements for Hashi Corp. 
  • Define Backup & IT Continuity process requirements for Hashi Corp. 
  • Request servers to be deployed and setup a pilot build of Hashi Corp. 
  • Perform UAT Testing on the Hashi’s pilot build and prepare process documents for user education. 
  • Support existing 3M on prem CyberArk and make improvements for the Everything in Cloud Initiative.



This position requires, at a minimum, a Bachelor’s degree in computer science, computer information systems, information technology, relevant engineering (computer engineering, software engineering, electronic engineering, or related), or a combination of education and experience equating to the U.S. equivalent of a Bachelor’s degree in one of the aforementioned subjects.

Apply Now