CyberARK PAM Lead and Manager

Job Description

Manager CyberArk Privilege Account Management (PAM) Results-driven CyberArk PAM Specialist with 7-10 years of hands-on experience in designing, implementing, and optimizing CyberArk s Privileged Access Management platform. The ideal candidate will have strong hands-on experience with CyberArk Core Privilege Access Security (PAS), including Digital Vault, Central Policy Manager (CPM), Privileged Session Manager (PSM), Privileged Vault Web Access (PVWA), Privileged Threat Analytics (PTA), and Endpoint Privilege Manager (EPM). The candidate will play a key role in securing privileged access across the enterprise, ensuring least privilege, and supporting Zero Trust initiatives. Strong analytical thinking, ability to solve complex problems, troubleshooting mindset, user onboarding, and developing metrics/dashboard expertise. Experienced with Big 4 consulting engagements or delivering Cyber Ark security transformation projects for Fortune 500 clients is a plus. Experience Designed, deployed, and maintained CyberArk PAM solutions (Core PAS, EPM, PTA, CPM, PVWA, PSM) Onboarded privileged accounts (Windows, Unix/Linux, network devices, databases, applications) Developed and managed platform policies, credential rotation schedules, and access controls Configured and administered PSM for session monitoring and recording of privileged activity CyberArk integration with Azure-AD/Entra ID, SIEM, ticketing systems (e.g., ServiceNow), and MFA solutions Implemented or supported Just-In-Time (JIT) access controls and session isolation Automated scripts (PowerShell, REST API) for onboarding, reporting, and maintenance Monitor and troubleshoot CyberArk services, logs, and system health Maintained and enhanced PAM policies aligned to compliance requirements (ISO, NIST, HIPAA) Collaborate with InfoSec, Infrastructure, and App teams to enforce privileged access governance Develop technical documentation, SOPs, and knowledge base articles Core Competencies CyberArk Core PAS Suite Proficiency Privileged Account Onboarding & Management Session Management & Monitoring Just-In-Time (JIT) Access Enablement Scripting & Automation using PowerShell or Python CyberArk Integration with AD/Entra-ID, MFA CyberArk Policy Management & Governance Threat Protection and Endpoint hardening Security Dashboarding, Reporting & Metrics User Onboarding & Lifecycle Management Incident Response & Troubleshooting Integration with SIEM, MDR and EDR Regulatory Compliance (NIST, HIPAA, ISO 27001) Cross-functional Collaboration (IT, SecOps, GRC) Education & Qualifications: Bachelor s degree in computer science. CyberArk Certified Delivery Engineer (CDE) certification is a plus. 7 10 years of IT security experience, with at least 5 years in CyberArk PAM Experience onboarding a wide range of privileged accounts (OS, DB, cloud, apps) Experience with Active Directory, LDAP, and MFA integration Experience with PAM-related scripting (PowerShell, Python, REST API)