CyberArk PAM Architect

Job Title: CyberArk Architect

Location: Alpharetta ,GA (Hybrid)

Overview

The CyberArk Architect is responsible for designing and implementing Privileged Access Management (PAM) solutions using CyberArk. This role ensures that privileged accounts, credentials, and access pathways across the enterprise are secure, monitored, and compliant with organizational policies and regulatory requirements. The CyberArk Architect partners closely with Security, Infrastructure, and Application teams to safeguard critical systems against unauthorized access.

Key Responsibilities

CyberArk Engineering

• Design and configure PAM solutions, mainly using CyberArk PAM product
• Install and configure CyberArk components including Vault, PVWA, CPM, PSM, PSMP, and plugins.
• Develop custom connectors, scripts, and PAM integrations

Security & Compliance

• Enforce leastprivilege principles for users, applications, and systems.
• Implement and manage privileged session monitoring, recording, and auditing.
• Ensure CyberArk meets regulatory and compliance standards (SOX, PCI, HIPAA, etc.).
• Identify and remediate security vulnerabilities related to privileged access.

Automation & Integration

• Improve/Automate process around CyberArk suite (account onboarding, password rotations, and provisioning workflows).
• Integrate CyberArk with AD, LDAP, SIEM, ticketing systems, cloud platforms (AWS/Azure/Google Cloud Platform), and DevOps toolchains.

Operational Support

• Troubleshoot CyberArk complex issues and provide TierIII support.
• Create and maintain documentation (runbooks, architecture diagrams, procedures).
• Support incident response teams in privilegerelated investigations.

Required Skills & Qualifications

• Bachelor s degree in computer science, Information Security, or related field (or equivalent experience).
• 3-7+ years experience in cybersecurity, IAM/PAM, or infrastructure security.
• Handson experience with CyberArk Core Privileged Access Security suite.
• Strong understanding of:
  • Identity & Access Management concepts
  • Windows & Linux administration
  • Active Directory & LDAP
  • Networking fundamentals
  • Secrets management
• Experience with scripting languages (PowerShell, Python, Bash).
• Knowledge of cloud platforms (AWS, Azure, Google Cloud Platform) and modern DevOps tools.
• Experience with REST APIs and automation frameworks.

Preferred Qualifications

• CyberArk Sentry certification.
• Understanding of Zero Trust architectures.
• Familiarity with regulatory frameworks (NIST, ISO 27001, CIS).

Soft Skills

• Strong analytical and problemsolving abilities.
• Ability to communicate clearly across technical and nontechnical teams.
• Selfdriven, detailoriented, and comfortable managing priorities in a fastpaced environment.