Job Description

Hybrid 3 days a week together out of our Birmingham office (flexible 2 days remote wherever).
Why this job matters
As a Privileged Access Engineer, you will be pivotal in advancing our Digital strategy by deploying and optimizing CyberArk solutions. Your responsibilities will include monitoring platform health, automating tasks like onboarding and decommissioning privileged accounts, and responding to incidents within agreed MTTR targets. You will collaborate with cross-functional teams and third-party vendors to drive continuous improvement, enforce performance standards, and ensure seamless privileged account access for critical business services. Additionally, you will proactively monitor alerts, conduct root-cause investigations, and engage vendors to restore services within SLA windows.
Join us and be part of a dynamic team where your expertise will significantly impact our digital security landscape. We value diversity and are committed to creating an inclusive environment for all employees. If you are passionate about cybersecurity and eager to contribute to a forward-thinking organization, we would love to hear from you!
What you'll be doing

• Onboarding and managing privileged accounts across various systems, including Windows, UNIX/Linux, network devices, databases, and web applications using CyberArk.
• Ensuring proper connectivity and communication between CyberArk components and target systems.
• Troubleshooting and resolving account onboarding issues, such as credential verification failures, connectivity issues, or policy mismatches.
• Collaborating with the Application team to create safes and policies that enable secure credential management of their privileged accounts through CyberArk.

The skills you'll need

• Commercial experience with CyberArk Privileged Access Management solutions, particularly with account onboarding.
• Understanding of CyberArk components: Vault, PVWA, CPM, PSM.
• Background in integrating CyberArk with various platforms: Windows, Linux/Unix, Oracle, Network Devices, Web Applications, and SQL servers.
• Knowledge of networking concepts: TCP/IP, DNS, routing, subnets, and firewall rules as related to system communication.
• Understanding of common ports and protocols (SSH, RDP, HTTPS, etc.) used by CyberArk for credential rotation.
• Scripting awareness (AutoIT, PowerShell, Python, etc.) is a plus for automation and integrations.

Additional skills and experience that will help you succeed

• CyberArk Defender and/or Sentry Certification.
• Experience in large enterprise or regulated environments.

Our leadership standards
Looking in:
Leading inclusively and Safely
I inspire and build trust through self-awareness, honesty and integrity.
Owning outcomes
I take the right decisions that benefit the broader organisation.
Looking out:
Delivering for the customer
I execute brilliantly on clear priorities that add value to our customers and the wider business.
Commercially savvy
I demonstrate strong commercial focus, bringing an external perspective to decision-making.
Looking to the future:
Growth mindset
I experiment and identify opportunities for growth for both myself and the organisation.
Building for the future
I build diverse future-ready teams where all individuals can be at their best.
Benefits

• An annual bonus of up to 10% (company & personal performance dependent)
• BT Pension scheme; minimum 5% employee contribution, BT contribution 10%
• Life Assurance
• Exclusive colleague discounts on our latest and greatest BT broadband packages
• 50% off EE mobile pay monthly or SIM only plans and 50% discount for friends and family on EE SIM only plans
• BT TV, including TNT Sport and the NOW Entertainment membership, and 25% off NOW Sport, Cinema and Kids
• Great support for working parents including pay whilst on maternity, adoptive, and paternity leave
• Option to join the Healthcare Cash Plan or other benefits such as dental insurance, gym memberships etc.
• 25 days annual leave (not including bank holidays), increasing with service
• Volunteering days so you can give back to your local community
• Brand new electric vehicle salary sacrifice arrangement, known as 'My EV'

About us
BT Group was the world's first telco and our heritage in the sector is unrivalled. As home to several of the UK's most recognised and cherished brands - BT, EE, Openreach and Plusnet, we have always played a critical role in creating the future, and we have reached an inflection point in the transformation of our business.
Over the next two years, we will complete the UK's largest and most successful digital infrastructure project - connecting more than 25 million premises to full fibre broadband. Together with our heavy investment in 5G, we play a central role in revolutionising how people connect with each other.
While we are through the most capital-intensive phase of our fibre investment, meaning we can reward our shareholders for their commitment and patience, we are absolutely focused on how we organise ourselves in the best way to serve our customers in the years to come. This includes radical simplification of systems, structures, and processes on a huge scale. Together with our application of AI and technology, we are on a path to creating the UK's best telco, reimagining the customer experience and relationship with one of this country's biggest infrastructure companies.
Change on the scale we will all experience in the coming years is unprecedented. BT Group is committed to being the driving force behind improving connectivity for millions and there has never been a more exciting time to join a company and leadership team with the skills, experience, creativity, and passion to take this company into a new era.
A FEW POINTS TO NOTE:
Although these roles are listed as full-time, if you're a job share partnership, work reduced hours, or any other way of working flexibly, please still get in touch.
We will also offer reasonable adjustments for the selection process if required, so please do not hesitate to inform us.
DON'T MEET EVERY SINGLE REQUIREMENT?
Studies have shown that women and people who are disabled, LGBTQ+, neurodiverse or from ethnic minority backgrounds are less likely to apply for jobs unless they meet every single qualification and criteria. We're committed to building a diverse, inclusive, and authentic workplace where everyone can be their best, so if you're excited about this role but your past experience doesn't align perfectly with every requirement on the , please apply anyway - you may just be the right candidate for this or other roles in our wider team.