CyberArk Architect (Contract)- Vendor & Workforce Access

About The Position

Requirements

• Bachelor’s or Master’s degree in Computer Science, Computer Engineering, Information Systems, or equivalent experience.
• 3+ years of experience in Information Security / Cybersecurity.
• 3+ years of hands-on experience designing and implementing CyberArk PAM solutions, including CyberArk Privileged Cloud.
• Strong experience in CyberArk Workforce Password Management and Vendor Privileged Access Management implementations.
• Proven experience in gathering PAM business requirements and translating them into technical design documents.
• Experience defining PAM strategies, roadmaps, and governance frameworks for enterprise clients.
• Hands-on experience with CyberArk components (Vault, CPM, PSM) and cloud-based PAM deployments.
• Good understanding of infrastructure technologies including databases, LDAP, directory services, operating systems, and networking.
• Strong problem-solving skills with the ability to communicate complex technical concepts effectively.
• Ability to work independently as well as collaboratively within a team environment.
• Excellent verbal and written communication skills.

Nice To Haves

• CyberArk certifications such as Certified Delivery Engineer (CDE), Sentry, Certified Delivery Engineer (CDE), Privilege Cloud, or Identity certifications.
• Experience in consulting or client-facing roles.
• Knowledge of programming/scripting languages such as Java, Python, or PowerShell.
• Familiarity with cloud platforms (AWS, Azure, GCP) and their privileged access models.
• Security certifications such as CISSP, CISM, or equivalent.

Responsibilities

• Act as the lead architect and SME for Privileged Access Management (PAM) solutions, including CyberArk Privileged Cloud, CyberArk Identity, and related privileged access capabilities.
• Design and implement secure solutions for privileged credential management, including Workforce Password Management, Vendor Privileged Access, session controls, and secure third-party access.
• Lead deployment of browser extensions, mobile applications, user onboarding, and phased adoption activities related to Workforce Password Management solutions.
• Collaborate with clients, system administrators, and application owners to define PAM requirements and design scalable, secure architectures.
• Develop end-to-end solution architecture, detailed technical designs, and support deployment and implementation activities.
• Define and implement PAM governance frameworks, policies, and operational processes.
• Assess client environments to identify security gaps, recommend improvements, and define target architectures and roadmaps.
• Lead implementation of CyberArk components including vault, CPM, PSM, Secure Web Sessions and cloud-native privileged access solutions.
• Support integration with cloud platforms and enterprise systems for privileged access use cases.
• Develop SOPs, runbooks, and implementation/deployment plans for privileged access and identity governance solutions.
• Provide technical leadership, mentor junior engineers/architects, and guide delivery teams.
• Conduct knowledge transfer sessions and educate stakeholders on PAM architecture, frameworks, and best practices.
• Collaborate with cross-functional teams to ensure seamless integration with infrastructure, applications, and security tools.

Benefits

• extensive opportunities to advance your career through leading digital identity projects across North America
• Our culture is built on respect, inclusion, and equal opportunity for everyone
• valuing learning, growth, and work-life balance
• fair and competitive compensation