We are seeking an experienced CyberArk Subject Matter Expert (SME) to lead and support Privileged Access Management (PAM) initiatives across the organisation. The role will focus on implementation, enhancement, governance, risk reduction, and compliance of PAM solutions, with deep expertise in CyberArk, integrations, and enterprise security architecture.
Your responsibilities
- Lead end-to-end CyberArk implementation, deployment, upgrades, patching, and DR setup across PAS components.
- Design CyberArk architecture and configure safes, platforms, and security policies aligned to enterprise standards.
- Define and implement PAM strategy, frameworks, and privileged access lifecycle aligned to compliance requirements.
- Develop and maintain CPM plugins and PSM connectors for seamless application and infrastructure onboarding.
- Perform advanced troubleshooting of PSM, CPM, Vault, and integrations to ensure platform stability.
- Drive account discovery and onboarding of servers, databases, network devices, and service accounts.
- Identify and remediate privileged access risks including orphan accounts, shared credentials, and password gaps.
- Integrate CyberArk with AD/LDAP, IGA tools, SIEM, and ServiceNow, including API-based automation.
- Support audits, compliance, attestation, and reporting to meet regulatory and internal governance requirements.
- Drive operational excellence through process improvement, automation, and continuous PAM maturity enhancement.
Your Profile Essential skills/knowledge/experience
- 8+ years of overall IT experience with strong CyberArk PAM expertise.
- CyberArk Defender Certification (PAM-Defender) - Mandatory.
- Hands-on experience in:
- CyberArk solution design & implementation
- Upgrade / new installation / migration
- PSM Connector & CPM Plugin development
- PSM & CPM troubleshooting
- Strong understanding of:
- CyberArk architecture & components
- Privileged Access Management (PAM) controls & security principles
Desirable skills/knowledge/experience - CyberArk Certifications: PAM-Sentry / PAM-CDE
- Experience in:
- CyberArk integration with third-party tools (SIEM, IAM, Cloud, etc.)
- Service account and platform onboarding & configuration
- Working with Credential Providers (CP, CCP, AIM)
- REST API-based integrations
- Understanding of:
- Identity & Access Management (IAM) concepts
- AD, LDAP, Windows/Linux environments
We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience.