We are looking for a skilled and experienced CyberArk PAM Consultant to design, implement, and manage Privileged Access Management (PAM) solutions using CyberArk. The ideal candidate will have 510 years of hands-on experience in PAM tools and security operations, with a deep understanding of identity lifecycle management, security compliance, and infrastructure integration.
Key Responsibilities:
- Deploy, configure, and manage CyberArk Core PAS components (PVWA, PSM, CPM, Vault).
- Onboard privileged accounts and configure access controls, policies, and session management.
- Integrate CyberArk with Active Directory, SIEM, ticketing systems, and third-party applications.
- Implement Privileged Session Recording, credential rotation, and access workflow approvals.
- Monitor and manage vault performance, incident handling, and patching/upgrades.
- Develop custom connectors, scripts, and automation using REST APIs, PowerShell, and PACLI.
- Conduct PAM health checks, audits, and compliance reviews.
- Collaborate with security, IT, and compliance teams to ensure adherence to internal and regulatory standards.
- Provide technical documentation, user training, and knowledge transfer.
Required Skills and Qualifications:
- 510 years of experience in Identity & Access Management (IAM) with specialization in CyberArk.
- Proficient with CyberArk components: PVWA, CPM, PSM, PTA, Vault, and password management.
- Strong knowledge of Windows, Linux, Active Directory, and network security protocols.
- Hands-on experience with PowerShell, REST APIs, or automation tools.
- Familiarity with IT security regulations such as ISO 27001, NIST, SOX, or GDPR.
- Ability to troubleshoot PAM issues, perform upgrades, and maintain system stability.
- Strong analytical and problem-solving skills with attention to detail.
- Excellent communication skills and experience working in enterprise environments.
Preferred Qualifications (Nice to Have):
- CyberArk Defender or Sentry certification (highly preferred).
- Experience with CyberArk Cloud Entitlements Manager (CEM) or Conjur.
- Integration experience with SIEM, ITSM tools (e.g., ServiceNow), or DevOps pipelines.
- Knowledge of other PAM/IAM tools (e.g., BeyondTrust, Thycotic, Okta) is a plus.
