Urgently need CyberArk PAM Solution Architect

Overview

Remote
Depends on Experience
Full Time
10% Travel

Skills

CyberArk
Identity & Access Management
NIST
Privileged Access Management
Identity Governance & Administration
PAM Architect

Job Details

Our company RAAH Technologies is a leading solution provider & system integrator for Fortune 1000 companies in North America specializing in Identity and Access Management (IAM) advising and implementation services. We are currently hiring CyberArk PAM Solution Architect candidates on Full Time (FTE), Contract to Hire (C2H) or on W2, 1099, C2C contracting basis. This position is 100% remote within USA.

Position Summary

The CyberArk Solutions Architect will be responsible for leading the design, implementation, and management of the CyberArk Privileged Access Management (PAM) suite within the organization. The individual will act as the subject matter expert, providing strategic guidance, and architectural leadership to ensure the security and integrity of critical systems and data.

The ideal candidate will be the one who is experienced in delivering complex CyberArk PAM projects and also has strong solution design and architecture experience.

Responsibilities

The candidate must be familiar with risk framework, compliance and auditing controls required to implement overall Identity & Access Management for organizations. Responsibilities include, but not limited to, as below -

  • Design and deploy CyberArk PAM solutions in accordance with industry best practices and organizational requirements.
  • Lead enterprise-wide CyberArk deployments, integrating the PAM suite with multiple platforms and technologies.
  • Develop and maintain the security architecture for privileged access management across the organization.
  • Create strategies for the management of secrets, privileged accounts, and session monitoring to ensure a robust security posture.
  • Collaborate with IT, security teams, and business units to understand their needs and incorporate them into the privileged access strategy.
  • Manage and mitigate risks associated with privileged accounts by enforcing principles of least privilege.
  • Configure and maintain CyberArk components including Enterprise Password Vault, Central Policy Manager, Privileged Session Manager, and Application Identity Manager.
  • Design custom solutions to meet specific security requirements using CyberArk APIs and extensibility.
  • Stay current with new CyberArk features and functionalities, integrating them into the security architecture as appropriate.
  • Provide architecture and design expertise for Saviynt Identity Governance & Administration (IGA) use cases such as Joiner, Mover, Leaver (JML), Access Reviews, RBAC/ABAC, Access Request, Application Onboarding, etc.
  • Provide architecture and design expertise for Azure AD Access Management (AM) use cases such as MFA, SSO, wherever needed.
  • Drives planning and execution of identity management roadmaps and technology enhancements for PAM, IGA and AM projects.
  • Conduct regular system audits to ensure performance and compliance with internal and external standards.
  • Assesses current applications and IAM (PAM, IGA and AM) architecture to ensure current implementations align with industry guidelines, best practices, and management approved standards.
  • Assist in planning, designing, and developing IAM technical solutions and alternatives with client teams to meet business requirements in adherence with client’s and NIST standards, processes, and best practices to meet compliance and regulatory requirements.
  • Assist in defining policy and exception process for enforcement of IAM (PAM, IGA and AM) within client’s business practices to ensure current implementations align with industry guidelines (NIST), best practices, and management approved standards.
  • Provide IAM (PAM, IGA and AM) SME experience for day-to-day system development, engineering, decision making, directions and maintenance activities of the team.
  • Partner with IAM (PAM, IGA and AM) core team stakeholders in implementation of processes per the evolving needs of the team and the solutions.
  • As needed, collaborate with business and technical partners to identify, and scope the IAM opportunities, quantify costs, outline potential value and ROI, identify risks, benefits, and constraints.
  • Develop solutions to complex technical problems by challenging traditional technical assumptions.
  • Recognize architectural problem areas and determine ways to effectively resolve them.
  • Provide training and technical guidance to security operations, application owners, and IT staff.
  • Develop and document standard operating procedures, system architectures, and configuration guidelines.

Qualifications

  • Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
  • Minimum of 5 years of experience with PAM solutions, specifically with CyberArk suite.
  • Demonstrated experience in implementing and managing CyberArk environments, including components such as EPV, CPM, PSM, and AIM.
  • Experience in implementation of Saviynt IGA product use cases and its integration with CyberArk PAM solution and ServiceNow.
  • Familiarity with cloud platforms (AWS, Azure, Google Cloud Platform) and understanding of how to secure privileged access in cloud environments.
  • Strong knowledge of Active Directory, LDAP, network protocols, and Windows/UNIX systems.
  • Experience with scripting languages (PowerShell, Python, Bash) is highly desirable.
  • Relevant certifications such as CyberArk Certified Defender, CyberArk Certified Sentry, or other relevant certifications are strongly preferred.
  • Excellent analytical, problem-solving, and technical documentation skills.
  • Strong communication and interpersonal abilities to collaborate with various stakeholders across the organization.
  • Strong knowledge of Linux, Unix Server, Windows Servers
  • Strong knowledge of OAuth, OpenID Connect, and SAML
  • Experience in Databases (Oracle, MSSQL, Sybase)
  • Experience with Networking (firewalls, TCP/IP, OSI, WAF, etc.),
  • Building use cases and sequence diagrams
  • Proven experience leading projects in complex customer environments
  • Great interpersonal skills: good written & oral communication in English, ability & willingness to work within international team, collaborative & team-oriented approach, being self-driven with an ability to quickly adapt to new technologies and variables in a dynamic and fast-moving, large-scale project with tight deadlines, multiple priorities and under defined budget, high attention to details and quality.
  • Candidate must be organized and analytical, adept at working in a team environment and able to handle multiple priorities.
  • Previous Consulting Or Big 4 Experience Preferred.
  • Certifications such as: CISSP, CCSP, CISM, or CISA certification a plus

Those authorized to work in the US may apply. H1B transfers or sponsorship are available, if hired for full time. To apply to this position, click Apply and send in your resume, contact information, visa status, availability of interviews and work.