CyberArk Architect -Remote USA

Overview

Remote
Accepts corp to corp applications
Contract - W2
Contract - 6+ month(s)

Skills

CPM
PVWA
PSM
Vault
PTA

Job Details

Role: CyberArk Architect

Location: Remote (Must be in EST/CST and support EST hours)

Contract

Experience: 14+ years

Job Summary:

We are looking for an experienced CyberArk Architect to lead the design, implementation, and optimization of privileged access management (PAM) solutions using CyberArk for a large-scale enterprise environment. The ideal candidate should possess strong architectural expertise, hands-on deployment experience, and the ability to guide technical teams in securing non-personal and privileged identities.

Key Responsibilities:

  • Design end-to-end CyberArk PAM architecture, aligned with enterprise security strategy.
  • Lead the deployment of CyberArk components: Vault, CPM, PSM, PVWA, PTA, Conjur, and related plugins.
  • Drive onboarding of non-personal accounts (NPAs), service accounts, and application identities.
  • Define safe structures, access control models, password rotation policies, and session monitoring strategies.
  • Integrate CyberArk with enterprise tools (e.g., LDAP, SIEM, ticketing systems).
  • Provide governance on plugin customization and third-party integrations (e.g., VMware ESXi, Nutanix, Entra ID, HP iLO).
  • Lead migration projects for legacy privileged accounts to CyberArk.
  • Work closely with security, IAM, application, and infra teams to ensure secure adoption.
  • Prepare architectural documentation, runbooks, and operational handover guides.
  • Mentor CyberArk engineers and support project execution in agile or waterfall models.

Required Skills:

  • Strong hands-on experience with CyberArk Core PAS (Vault, CPM, PVWA, PSM, PTA).
  • Deep understanding of privileged identity management (PIM) and NPA lifecycle management.
  • Expertise in plugin development/customization (CPM/PSM plugins).
  • Experience in infrastructure security, Windows/Linux servers, Active Directory.
  • Familiarity with API integrations, scripting (PowerShell, REST API), and automation tools.
  • Strong documentation, communication, and stakeholder engagement skills.
  • CyberArk certification (e.g., Defender, Sentry, Guardian) is a plus.

Nice to Have:

  • Experience with Cloud PAM (AWS, Azure, Google Cloud Platform).
  • Familiarity with DevOps integrations (CyberArk Conjur).
  • Exposure to regulatory compliance frameworks (SOX, PCI-DSS, ISO 27001).

Education:

  • Bachelor's degree in Computer Science, Information Security, or related field.
  • Relevant cybersecurity certifications are preferred.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.