CyberArk IAM PAM Solution Architect

1. Product Design & Implementation

• Knowledge about Active Directories (Entra ID, Azure AD)
• Knowledge & Implementation experience with integrating PAM with IGA.
• Implementation experience with Core-PAS CyberArk components (EPV, DR EPV, HA EPV, PVWA, PSM, PSMP, CPM).
• Implementation experience with CyberArk Privileged Threat Analytics (PTA)
• Implementation experience with CyberArk Advanced Modules (AAM CP, AAM CCP)/ Optional Alero, HTML5
• Integration experience of SIEM, SNMP, SMTP, SAML, LDAPS with CyberArk core PAS.
• Experience with scripting custom Connection components using Auto-IT for Web applications & thick clients
• Experience with scripting custom CPM Plugins for SSH & Web based applications.
• Hands-on experience with onboarding Device types Windows, *Nix, Network, Database, SAP, Web applications, Domain Controllers.
• Design and implement Entra ID PIM Solution
• Entra ID Condition Access policies for granular PAM based on risk/device/location
• Entra ID Identity protection for real time alerts and remediations
• Azure Keyavult for managing secrets/ccertificate
• Automate integrations with Entra ID PIM
• Experience with working with application owners, DevOps, and IT operations to embed PAM controls.
• Knowledge on CyberArk REST API's
• Able to assist Develop & tester with Automation initiates
• Able to create Discovery rules
• Knowledge about DNA Scans
• Knowledge about PAS Reporter, Telemetry, Export Vault Data
• Preparation of Architecture designs for all modules of CyberArk
• Creation & review of High level project plan
• Provide consulting advise to customer/stakeholders during technical discussions.
• Creation of Project Documentation (HLD, DTD, SoP, KEDB, Breakglass, etc.,)
• Assist colleagues from Support & Project team with technical queries

Metrics

No of PAM Integration completed

Time spent

• 60% of time spent on KRA

1. Continuous optimization and improvement

Assess IAM products and analyse for potential areas of improvement in processes

Stay aware of the risk landscape and proactively address risks and vulnerabilities

Stay up-to-date on industry best practices and trends concerning IAM technologies

Conduct performance testing and use results to improve system efficiency

Implement automation to raise efficiency of operations

Collaborate with internal stakeholders to assess process efficiency and make improvements

Act as a point of contact for incident troubleshouting when being on-call, according to the on-call rotation scheme

Metrics

Client satisfaction rate

Proper product improvement compared to development in the market

Time spent

• 20% of time spent on KRA

1. Operations

Ensure seamless integration of IAM product with the IT ecosystem

Manage and operate IAM workflows

Monitor IAM product's performance

Carry out troubleshooting and follow-up activities in case of problems and/or incidents

Act as a point of contact as part of the on-call rotation scheme for problem and incident troubleshooting

Collaborate with internal stakeholders (e.g. Service Delivery Managers and Product Owners) to enable timely support and resolution to IAM-related issues

Take care of improvement actions in response to incidents

Proactively report improvements and cost savings implemented by the team

Recommend and implement best practices for operational monitoring and capacity planning for IAM products

Record and update operational procedures

Provide technical input in development of IAM framework, standards and processes

Provide training and guidance on complex technical issues

Metrics

Client satisfaction rate

Operational performance of product

Quality and velocity of troubleshooting

Time spent

• 20% of time spent on KRA