Job Description:
Experience: 6–10+ years
Certifications Required: CyberArk Sentry and/or Guardian
Job Summary:
We are looking for a highly skilled and certified CyberArk Lead / Implementation Specialist to design, implement, and manage CyberArk Privileged Access Management (PAM) solutions across a distributed enterprise environment. The ideal candidate will have hands-on experience with CyberArk components, strong integration capabilities, and a deep understanding of privileged access security best practices.
Key Responsibilities:
- Lead the end-to-end implementation of CyberArk-based Privileged User Access Management (PUAM) solutions across enterprise and branch office environments.
- Design and deploy a scalable CyberArk architecture that supports high availability and secure access across distributed networks, including internet-facing systems.
- Install, configure, and manage core CyberArk components:
- Vault
- Password Vault Web Access (PVWA)
- Privileged Session Manager (PSM)
- Central Policy Manager (CPM)
- Privileged Threat Analytics (PTA)
- Integrate CyberArk with enterprise systems such as:
- Active Directory (AD)
- SIEM tools (e.g., Splunk, QRadar)
- Ticketing systems and third-party applications
- Define and enforce security policies and access controls for privileged accounts.
- Perform health checks, upgrades, patching, and ongoing maintenance of CyberArk infrastructure.
- Collaborate with security, infrastructure, and application teams to ensure seamless integration and compliance.
- Provide technical documentation, including design documents, implementation guides, and operational runbooks.
- Support incident response and troubleshooting related to privileged access issues.
- Train and mentor junior engineers and administrators on CyberArk best practices.
Technical Skills & Expertise:
- Mandatory Certifications:
- CyberArk Sentry and/or Guardian certification (required for project/vendor sign-off)
- CyberArk Expertise:
- Strong hands-on experience with CyberArk PAM Suite
- Installation, configuration, and management of Vault, PVWA, PSM, CPM, PTA
- Experience with CyberArk API and automation scripts for onboarding and management
- Integration Skills:
- Active Directory, LDAP
- SIEM tools (e.g., Splunk, QRadar)
- Ticketing systems (e.g., ServiceNow)
- Integration with cloud platforms (AWS, Azure, GCP) is a plus
- Security & Compliance:
- Understanding of privileged access security principles
- Familiarity with compliance standards such as ISO 27001, NIST, SOX, GDPR
- Scripting & Automation:
- PowerShell, REST APIs, or other scripting languages for automation and reporting
- Monitoring & Troubleshooting:
- Experience in monitoring CyberArk environments and resolving performance or access issues
Preferred Qualifications:
- Bachelor’s or Master’s degree in Computer Science, Information Security, or related field
- Additional certifications such as CISSP, CISM, or CEH are a plus
- Experience in regulated industries (e.g., BFSI, Healthcare, Government) is desirable
Soft Skills:
- Strong analytical and problem-solving skills
- Excellent communication and documentation abilities
- Ability to work independently and collaboratively in a fast-paced environment
Strong stakeholder management and client-facing skills
