Cyber Ark Team Lead (Privileged Access Management)

CyberArk Team Lead (Privileged Access Management)

Position Overview
We are seeking a CyberArk Team Lead to oversee and guide a small team of engineers responsible for managing and supporting our Privileged Access Management (PAM) environment. This role sits at the intersection of hands-on technical execution and team leadership, ensuring the CyberArk platform is secure, scalable, and aligned with enterprise security and compliance requirements.

The ideal candidate brings strong CyberArk expertise, a practical leadership style, and the ability to translate security strategy into consistent, reliable delivery. This role is critical to protecting privileged access across the enterprise while developing a high-performing, accountable engineering team in afederal and security-sensitive environment.

Key Responsibilities

Team Leadership & Delivery

• Lead and mentor a team of 3 5 CyberArk engineers, providing day-to-day direction, technical guidance, and support

• Own team deliverables, ensuring work is prioritized, executed, and completed with quality and consistency

• Partner with leadership to align team capacity with project demand and operational needs

• Establish and reinforce standards, processes, and accountability across the team

CyberArk Platform Ownership

• Oversee administration and maintenance of the CyberArk Privileged Access Security (PAS) platform, including Vault, CPM, PVWA, PSM, and PTA

• Ensure platform stability, performance, and security across all environments

• Lead upgrades, patching, and configuration management efforts

Privileged Access Management Execution

• Drive onboarding of privileged accounts and enforcement of least-privilege access controls

• Oversee password management, session management, and policy enforcement

• Ensure consistent application of PAM best practices across systems and teams

Integration & Engineering

• Guide integrations between CyberArk and enterprise systems including Active Directory, cloud platforms (Azure/AWS), databases, and network devices

• Support automation efforts using scripting (PowerShell, Python, Bash) to improve efficiency and reduce manual effort

• Manage custom integrations and enhancements as needed

Monitoring, Compliance & Risk Management

• Oversee monitoring and troubleshooting of CyberArk components and related integrations

• Ensure regular audits are conducted and reporting supports internal policies and regulatory requirements

• Support compliance initiatives aligned to frameworks such as NIST, SOX, FISMA, and FedRAMP

• Participate in incident response and investigations involving privileged access

Collaboration & Stakeholder Support

• Partner with security, infrastructure, and application teams to ensure secure access to critical systems

• Provide technical guidance, training, and support to users and stakeholders

• Act as an escalation point for complex technical or operational issues

Qualifications

• Active Secret clearance required (must be held at time of hire)

• 5+ years of experience in IT security or systems administration, with at least 3 years focused on CyberArk

• Prior experience leading or mentoring engineers, or acting in a technical lead capacity

• Strong expertise in CyberArk Privileged Access Security (Vault, PVWA, PSM, CPM, PTA)

• Experience integrating CyberArk with Active Directory, cloud platforms (Azure/AWS), databases, and network devices

• Proficiency in scripting (PowerShell, Python, Bash) for automation and operational efficiency

• Working knowledge of federal compliance frameworks (NIST, SOX, FISMA, FedRAMP)

• CyberArk certification (Defender, Sentry, or Guardian) strongly preferred

What Success Looks Like in This Role

• A stable, well-managed CyberArk environment with minimal disruption

• Clear team ownership, accountability, and consistent delivery

• Strong alignment between security requirements and operational execution

• Continuous improvement in automation, onboarding efficiency, and compliance readiness