CyberArk Solution Architect

This is a fully remote position, open to applicants in District of Columbia.

📋 Description

• Direct the design, implementation, and enhancement of enterprise Privileged Access Management (PAM) solutions tailored for federal and regulated settings.

• Create CyberArk architecture blueprints, deployment models, integration patterns, and strategic roadmaps.

• Oversee CyberArk implementations, upgrades, migrations, and improvements in extensive federal or regulated environments.

• Configure and manage CyberArk components, including:

• Enterprise Password Vault

• Privileged Session Manager

• Central Policy Manager

• Privileged Threat Analytics

• Endpoint Privilege Manager

• CyberArk Identity / Workforce Identity

• Secrets Manager / Conjur

• Integrate CyberArk with enterprise identity providers, cloud services, SIEM tools, ITSM systems, and CI/CD pipelines.

• Facilitate integration with technologies such as Active Directory, Entra ID/Azure AD, Okta, AWS, Azure, ServiceNow, Splunk, Jenkins, GitLab, and other enterprise platforms.

• Convert business, security, and compliance needs into secure technical designs.

• Ensure PAM solutions comply with federal security standards, including Zero Trust, FedRAMP, NIST SP 800-53, FISMA, and specific agency security policies.

• Establish privileged access policies, onboarding protocols, credential rotation requirements, and session monitoring strategies.

• Conduct technical workshops, design reviews, solution showcases, and stakeholder presentations.

• Offer technical guidance to engineers, administrators, and implementation teams.

• Identify risks, dependencies, technical deficiencies, and possibilities for automation and process enhancements.

• Aid in the development of documentation, including architecture diagrams, implementation plans, operational procedures, and security control mappings.

• Assist with compliance evaluations, audits, and security authorization tasks as necessary.

• Act as a trusted advisor to clients, program leadership, and security stakeholders regarding PAM strategies and CyberArk best practices.

⛳️ Requirements

• Over 10 years of IT experience, with a minimum of 5 years dedicated to CyberArk PAM architecture, design, and implementation.

• Extensive hands-on experience with the CyberArk product suite in enterprise environments.

• Proven experience in designing PAM solutions for federal, governmental, or heavily regulated environments.

• Strong understanding of privileged access management principles, including:

• Credential vaulting

• Password rotation

• Session isolation and monitoring

• Least privilege

• Just-in-time access

• Secrets management

• Service account management

• Experience integrating CyberArk with identity providers such as Active Directory, Entra ID/Azure AD, Okta, or comparable platforms.

• Experience integrating CyberArk with cloud platforms such as AWS, Azure, or Google Cloud.

• Familiarity with CI/CD pipeline integrations and DevSecOps environments.

• Strong knowledge of federal cybersecurity frameworks and compliance standards, including: Zero Trust Architecture, FedRAMP, NIST SP 800-53, FISMA, and NIST Cybersecurity Framework.

• Capability to produce solution architecture documents, design diagrams, implementation plans, and technical standards.

• Experience leading technical teams through design, implementation, testing, and deployment phases.

• Ability to diagnose complex CyberArk issues and propose scalable solutions.

• Strong comprehension of enterprise security architecture, identity governance, and access management principles.

• Must be eligible to obtain and maintain a federal Public Trust clearance or higher.

• CyberArk certifications such as: CyberArk Defender, CyberArk Sentry, CyberArk CDE, CyberArk Guardian, CyberArk Trustee. A cloud security certification is preferred, such as: AWS Certified Security – Specialty, Microsoft Certified: Azure Security Engineer Associate, Google Professional Cloud Security Engineer, or CCSP.

🏝️ Benefits

• Medical

• Dental

• Vision

• AD&D

• STD

• LTD

• Company paid Life Insurance

• 401k with employer contribution

• Paid Time Off

• Pet Insurance