Security Services Architect

Key Responsibilities:

• Design and architect CyberArk solutions tailored to customer environments and business requirements.
• Lead the planning, deployment, and integration of CyberArk Privileged Access Management (PAM) and Identity Security products.
• Define and implement best practices for secure architecture, configuration, and maintenance of CyberArk platforms.
• Collaborate with clients, project managers, and technical teams to deliver scalable and secure CyberArk implementations.
• Conduct assessments of customer infrastructure and identify opportunities for security enhancements.
• Provide expert-level technical guidance and mentoring to project teams and stakeholders.
• Develop solution documentation, architecture diagrams, and deployment procedures.
• Participate in troubleshooting, optimization, and performance tuning of existing CyberArk environments.
• Stay updated with emerging security technologies and CyberArk product advancements.
• Act as a trusted advisor to customers, ensuring their identity security strategy aligns with organizational goals and compliance requirements.

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field.
• 5+ years of experience in security architecture, solution design, or IAM implementation.
• Proven hands-on experience with CyberArk PAM, EPM, or Identity Security Suite.
• Strong understanding of identity governance, privileged access, and authentication frameworks.
• Knowledge of networking, Windows and Unix system administration, and directory services (AD/LDAP).
• Familiarity with security protocols such as LDAP, SAML, OAuth2.0, and OpenID Connect.
• Experience with scripting languages (PowerShell, Python, or Bash) for automation and customization.
• Exposure to compliance frameworks such as SOX, GDPR, and ISO 27001.
• Strong communication, documentation, and client engagement skills.

Nice to Have:

• CyberArk certification (Defender, Sentry, Guardian).
• Experience with other IAM platforms (Okta, Ping, Azure AD).
• Knowledge of cloud security architecture across AWS, Azure, or GCP.
• Experience integrating PAM solutions with SIEM, ticketing, and monitoring systems.