CyberArk Architect -Remote USA

CyberArk Architect -Remote USA

Posted 1 week ago by 1752301919

Apply
Negotiable
Outside
Remote
USA
Apply
Active Directory Agile Methodology Application Programming Interface (API) Automation AWS Identity And Access Management (IAM) Cloud Computing Cloud Technology Computer Science Critical Path Method (CPM) Scheduling Cyber Security Enterprise Security Google Cloud Google Cloud Platform (GCP) Identity And Access Management Lifecycle Management Lightweight Directory Access Protocols Management Microsoft Azure Pluggable Authentication Module (PAM) Professional Scrum Master (PSM) RESTful API Scripting Security Information And Event Management (SIEM) Security Strategies Service Accounts Stakeholder Engagement Stakeholder Management VMware Certified Associate

Summary: We are seeking a seasoned CyberArk Architect to spearhead the design, implementation, and optimization of privileged access management solutions within a large-scale enterprise environment. The role requires extensive architectural expertise and hands-on experience with CyberArk components, as well as the ability to mentor technical teams. The ideal candidate will work remotely, supporting EST hours, and will be responsible for ensuring secure adoption of CyberArk solutions across various teams. A strong background in privileged identity management and CyberArk certification is preferred.

Key Responsibilities:

  • Design end-to-end CyberArk PAM architecture, aligned with enterprise security strategy.
  • Lead the deployment of CyberArk components: Vault, CPM, PSM, PVWA, PTA, Conjur, and related plugins.
  • Drive onboarding of non-personal accounts (NPAs), service accounts, and application identities.
  • Define safe structures, access control models, password rotation policies, and session monitoring strategies.
  • Integrate CyberArk with enterprise tools (e.g., LDAP, SIEM, ticketing systems).
  • Provide governance on plugin customization and third-party integrations (e.g., VMware ESXi, Nutanix, Entra ID, HP iLO).
  • Lead migration projects for legacy privileged accounts to CyberArk.
  • Work closely with security, IAM, application, and infra teams to ensure secure adoption.
  • Prepare architectural documentation, runbooks, and operational handover guides.
  • Mentor CyberArk engineers and support project execution in agile or waterfall models.

Key Skills:

  • Strong hands-on experience with CyberArk Core PAS (Vault, CPM, PVWA, PSM, PTA).
  • Deep understanding of privileged identity management (PIM) and NPA lifecycle management.
  • Expertise in plugin development/customization (CPM/PSM plugins).
  • Experience in infrastructure security, Windows/Linux servers, Active Directory.
  • Familiarity with API integrations, scripting (PowerShell, REST API), and automation tools.
  • Strong documentation, communication, and stakeholder engagement skills.
  • CyberArk certification (e.g., Defender, Sentry, Guardian) is a plus.

Salary (Rate): undetermined

City: undetermined

Country: USA

Working Arrangements: remote

IR35 Status: outside IR35

Seniority Level: undetermined

Industry: IT

Detailed Description From Employer:

Role: CyberArk Architect

Location: Remote (Must be in EST/CST and support EST hours)

Contract

Experience: 14+ years

Job Summary:

We are looking for an experienced CyberArk Architect to lead the design, implementation, and optimization of privileged access management (PAM) solutions using CyberArk for a large-scale enterprise environment. The ideal candidate should possess strong architectural expertise, hands-on deployment experience, and the ability to guide technical teams in securing non-personal and privileged identities.

Key Responsibilities:

  • Design end-to-end CyberArk PAM architecture, aligned with enterprise security strategy.
  • Lead the deployment of CyberArk components: Vault, CPM, PSM, PVWA, PTA, Conjur, and related plugins.
  • Drive onboarding of non-personal accounts (NPAs), service accounts, and application identities.
  • Define safe structures, access control models, password rotation policies, and session monitoring strategies.
  • Integrate CyberArk with enterprise tools (e.g., LDAP, SIEM, ticketing systems).
  • Provide governance on plugin customization and third-party integrations (e.g., VMware ESXi, Nutanix, Entra ID, HP iLO).
  • Lead migration projects for legacy privileged accounts to CyberArk.
  • Work closely with security, IAM, application, and infra teams to ensure secure adoption.
  • Prepare architectural documentation, runbooks, and operational handover guides.
  • Mentor CyberArk engineers and support project execution in agile or waterfall models.

Required Skills:

  • Strong hands-on experience with CyberArk Core PAS (Vault, CPM, PVWA, PSM, PTA).
  • Deep understanding of privileged identity management (PIM) and NPA lifecycle management.
  • Expertise in plugin development/customization (CPM/PSM plugins).
  • Experience in infrastructure security, Windows/Linux servers, Active Directory.
  • Familiarity with API integrations, scripting (PowerShell, REST API), and automation tools.
  • Strong documentation, communication, and stakeholder engagement skills.
  • CyberArk certification (e.g., Defender, Sentry, Guardian) is a plus.

Nice to Have:

  • Experience with Cloud PAM (AWS, Azure, Google Cloud Platform).
  • Familiarity with DevOps integrations (CyberArk Conjur).
  • Exposure to regulatory compliance frameworks (SOX, PCI-DSS, ISO 27001).

Education:

  • Bachelor's degree in Computer Science, Information Security, or related field.
  • Relevant cybersecurity certifications are preferred.
Apply
Similar Jobs
Loading data...