CyberArk Engineer

Role: CyberArk Engineer

Location: Remote, but must live locally to DC for meetings

Duration: Contract to Hire

Top Required Skills

Either CyberArk Defender OR CyberArk Sentry Certifications

Bachelor s Degree

able to obtain Public Trust

We are seeking an experienced CyberArk Certified Delivery Engineer to join our team in supporting the deployment and management of an on-premise CyberArk instance for a government client. The ideal candidate will have deep expertise in CyberArk solutions, strong technical skills, and a proven track record of delivering secure privileged access management in complex environments. The CyberArk Engineer will support deployment, use, and maintenance of CyberArk for Privileged Access Management (PAM) for high-pace, federated enterprise client environment. The CyberArk Engineer will be responsible for configuring and maintaining of CyberArk as an on-premise privileged access management system for federal clients in collaboration with other experienced CyberArk Engineers.

What You Will Do:

• Lead the deployment, configuration, and ongoing management of CyberArk on-premise solutions.
• Collaborate closely with government client stakeholders to understand requirements and ensure compliance with security policies.
• Provide expert guidance on CyberArk best practices, architecture, and integration.
• Troubleshoot and resolve issues related to CyberArk components and privileged access workflows.
• Develop and maintain documentation, runbooks, and training materials for CyberArk operations.
• Support upgrades, patches, and system health monitoring to ensure high availability and security.
• Work with cross-functional teams including security, infrastructure, and application owners to implement privileged access controls.

What You Will Need:

• Bachelor's degree in IT, Information Systems, or Computer Science or related field.
• Minimum of FIVE (5) years involved in large IT security projects including cost, schedule, and performance.
• Strong experience in administration, configuration and troubleshooting on CyberArk modules: Enterprise Password Vault (EPV), Password Vault Web Access (PVWA), Central Policy Manager (CPM), Privileged Session Manager (PSM), Privileged Session Management Proxy (PSMP), Privileged Threat Analytics (PTA).
• Experience with PAM Operational tasks, to include Creating Safes, Defining Access Control, Policies or Platforms, User provisioning and entitlements, Managing Applications Credentials, Auto upload and User Access Policy Management.
• Understanding in Custom connectors / plugins to various applications.
• Scripting experience in (PowerShell, RESTful APIs, AutoIT, PACLI).
• Experience developing cybersecurity policies.
• Experience with online research techniques.
• ship is required.
• Either CyberArk Defender OR CyberArk Sentry Certifications
• Must be able to OBTAIN and MAINTAIN a Federal or DoD "PUBLIC TRUST"; candidates must obtain approved adjudication of their PUBLIC TRUST prior to onboarding with Guidehouse. Candidates with an ACTIVE PUBLIC TRUST or SUITABILITY are preferred

What Would Be Nice To Have:

• Knowledge of compliance standards such as NIST, FISMA, or FedRAMP.
• CyberArk CDE certified.
• Experience following established software development standards and procedures and contributing towards their improvement
• Familiarity with SDLC process, including designing and developing applications
• Broad knowledge of information system technologies with a willingness to learn new technologies