CyberArk (IAM) Engineer

Lead the design, implementation, and optimization of CyberArk Privileged Access Management (PAM) and Identity & Access Management (IAM) solutions across enterprise environments. This role fulfills a critical need for secure privileged access management and IAM governance across enterprise systems. The ideal candidate is a senior-level CyberArk expert who can independently design, implement, and optimize PAM solutions while supporting compliance and security initiatives. Looking for strong hands-on experience, automation skills, and the ability to lead IAM projects end-to-end.

Day-to-Day Responsibilities:

• Design, deploy, and maintain CyberArk components (EPV, PSM, CPM, PSMP, SIA, SWS)
• Develop and enforce privileged access policies aligned with compliance standards
• Integrate CyberArk with AD, Azure AD, LDAP, and cloud platforms
• Automate PAM/IAM processes using PowerShell or Python
• Monitor, audit, and optimize configurations to mitigate risk
• Support IAM systems including AD, Entra ID, PKI, SSO, and 2FA
• Lead incident response for privileged access issues
• Collaborate with security and IT teams on IAM strategy and audits

• Must-Haves:

• 10 years of IT experience with focus on IAM (identity access management and Security
• 5 years of hands-on CyberArk PAM implementation and support
• Strong expertise in Active Directory, Azure AD, LDAP, PKI, SSO, 2FA
• Scripting experience (PowerShell, Python, or similar) Experience with compliance frameworks (NIST, SOX, GDPR, etc.)

Nice-to-Haves: *

• CyberArk Defender and Sentry certifications
• Microsoft, AWS, Azure, or CISSP certifications
• Experience in government-regulated or ITAR environments
• Cloud IAM integration experience (AWS/Azure)