Technical Product Analyst - SOW

Technical Product Analyst
Location: REMOTE
Pay Rate: Negotiable, open to W2 and C2C options
Position Type: Multiyear Contract

• Gather, analyze, document and validate requirements for non human identities (e.g., machine identities, service accounts, ephemeral credentials, identity automation) including their lifecycle, compliance, security, and usage patterns.
• Own user stories, epics, features, use cases, acceptance criteria related to identity management, credential management, machine/service account onboarding/offboarding, non human identity policy enforcement.
• Understand and define integration requirements for Hyper Affirm / Hyper Identity tools (or your specific product) including API specifications, authentication / authorization flows, lifecycle management, role / policy definitions.
• Translate security and compliance requirements (e.g. least privilege, separation of duties, auditability) into product requirements, collaborating with InfoSec, DevOps, and engineering.
• Work with CyberArk EPM: define requirements for endpoint privilege escalation, application elevation, endpoint policies, privilege management workflows, policy rules, exception management, telemetry, endpoint agent behavior, etc.
• Assist in designing product roadmap / feature prioritization for identity & privileged access functionality, especially focused on non human identities and EPM.
• Serve as liaison between product management, engineering, security, operations, and support to ensure requirements are understood, feasible, and implementable.
• Define nonfunctional requirements: performance, scalability, reliability, logging & monitoring, security, availability pertaining to identity and endpoint privilege systems.
• Create technical documentation: architecture diagrams, data flow diagrams, API docs, policy and configuration specifications, user guides for internal teams.
• Facilitate testing: participate in writing and reviewing test plans, acceptance testing to validate that implementations meet requirements (especially for security and identity workflows).
• Monitor product usage / metrics / telemetry to identify issues/issues in privilege usage, non human identity misuse, performance of EPM, etc., and propose improvements.
• Demonstrated experience with non human identities / machine/service accounts / identity lifecycle management (provisioning, credential management, rotation, deprovisioning, etc.).
• Hands on knowledge of CyberArk EPM (Endpoint Privilege Manager) including policy creation, endpoint agent configuration, elevation workflows, exception handling, etc.
• Experience with or strong understanding of “Hyper Affirm / Hyper Identity” type tools / architectures (if this is a specific vendor/tool, then familiarity with that tool’s flows, APIs, integrations).
• Solid understanding of identity and access management (IAM), privileged access management (PAM), zero trust architectures, service identities, secrets management.
• Proficiency in APIs: ability to understand / define REST APIs, authenticate / authorize flows, web protocols (OAuth, SAML, OpenID, etc.), with experience ideally writing or consuming APIs.
• Excellent communication skills: able to translate technical requirements into clear user stories; able to align stakeholders (business, security, engineering).
• Strong analytical skills: ability to analyze logs, metrics, telemetry; identify anomalies; measure impact of features; make data driven recommendations.

System One, and its subsidiaries including Joulé, ALTA IT Services, and Mountain Ltd., are leaders in delivering outsourced services and workforce solutions across North America. We help clients get work done more efficiently and economically, without compromising quality. System One not only serves as a valued partner for our clients, but we offer eligible employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan.

System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law.