Years of Experience

6+ years of relevant experience in CyberArk Implementation - Design & Architecture.

General Description

Creating and implementing strategies for managing privileged access, designing solutions, and ensuring the secure storage and retrieval of sensitive credentials.

Demonstrating in-depth knowledge of CyberArk products, including the Enterprise Password Vault, Privileged Session Manager, and other related tools.

Overseeing the installation, configuration, and integration of CyberArk components to safeguard critical systems and data.

Engage with different stakeholders via workshops, etc. for all the design level discussions and prepare design documents.

Developing and enforcing security policies, access controls, and privileged access management procedures to mitigate risks.

Identifying vulnerabilities and potential threats, and implementing measures to protect against unauthorized access.

Maintaining detailed records, reports, and documentation of CyberArk configurations and activities.

Ensuring that CyberArk solutions are up-to-date and providing support for system upgrades and maintenance.

Interact with different teams to gather the required data for integration/ on-boarding of target systems /devices.

Resolving technical issues and providing expert guidance to address security challenges.

Skills / Technical Requirements

Expertise in providing PAM solutions using CyberArk.

Should have experience on CyberArk from 11.xx onwards

Design deploy & support high-performance, high-availability PAM environment with any number of target end points, creating workflows, custom connectors, policies.

Perform enhancement in CyberArk Core PAS

On-board target systems onto CyberArk Core PAS.

Support migration from Centrify to CyberArk Core PAS.

Integrate Legacy IDM instances with CyberArk to manage human accounts.

Support Redhat migration

Migrate CyberArk shared and pooled accounts.

Create named tiered accounts model and onboard name tiered accounts in CyberArk and assign them to correct IDM User Groups

Work on Migration model - Pooled Accounts to Named tiered account.

Perform Centrify Access Data Analysis to yield the current access data model and merge into the new Tiered Access Model.

Should be capable to deploy/install/configure CyberArk components Vault, CPM, PVWA, PSM, PSMP and AIM as per the client requirements.

Hands-on experience or knowledge on Configuring PTA, EPM.

Integrating various platforms with CyberArk such as Windows, UNIX, Databases and network devices, SSH Keys, SAP etc.

Creating and managing Safes, platforms and owners.

Should have knowledge on Password upload utility and PACLI.

Experience on integrating CyberArk solution with LDAP, SIEM SNMP and other identity management systems.

Strong scripting skills, often using languages like PowerShell, Python, or Shell scripting, to automate tasks and customize CyberArk solutions.

Knowledge of regulatory requirements and industry standards related to privileged access management, such as NIST, CIS, and GDPR.

Experience with security monitoring tools and integrating CyberArk with Security Information and Event Management (SIEM) systems.

Soft Skills

Excellent Verbal and written communication skills in English.

Ability to present solutions to clients remotely and in person if needed.

Good documentation skills that will enable creation of design documents for the technical solutions proposed.

Excellent problem-solving skills.

Good collaboration skills in working with virtual and distributed teams.

Certifications

Possession of relevant CyberArk certifications such as CyberArk Certified Delivery Engineer (CDE) or CyberArk Certified Trustee (CTP) can be a significant advantage.

Educational Qualifications

University degree in IT or/and IT Security