CyberArk PAM Architect

STAFIDE
Amsterdam, Netherlands
3 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior

Job location

Amsterdam, Netherlands

Tech stack

Microsoft Active Directory
Amazon Web Services (AWS)
Azure
Cloud Computing
Identity and Access Management
Python
Key Management
Lightweight Directory Access Protocols (LDAP)
PCI Data Security Standards
Powershell
Azure
Ansible
Zero Trust Network Access
Security Information and Event Management
Google Cloud Platform
Cloud Platform System
Cyberark
CIS Benchmarks
REST
ServiceNow

Job description

  • Design and develop CyberArk Privileged Access Management (PAM) architecture aligned with business and security requirements.
  • Define PAM strategy, roadmap, and best practices across the organization.
  • Architect highly available and scalable CyberArk environments.
  • Lead the deployment, configuration, administration, and upgrades of CyberArk components, including Digital Vault, PSM, CPM, PVWA, PTA, CyberArk Identity, and Conjur Secrets Management.
  • Configure Safes, Platforms, Account Groups, access controls, password rotation, and privileged credential lifecycle management.
  • Integrate CyberArk with Active Directory, Microsoft Entra ID (Azure AD), LDAP, SIEM solutions, ServiceNow, and cloud platforms such as AWS, Azure, and GCP.
  • Develop automation using REST APIs, PowerShell, Python, and Ansible.
  • Implement application credential management and secrets management solutions.
  • Support compliance initiatives, conduct privileged account audits, and ensure adherence to least privilege and Zero Trust principles.
  • Provide Level 3 support, perform troubleshooting and root cause analysis, create technical documentation, and mentor PAM engineers and security teams., * Design secure, scalable, and highly available CyberArk PAM solutions.
  • Troubleshoot complex CyberArk infrastructure and integration issues.
  • Automate PAM operations and streamline privileged access processes.
  • Perform security assessments and recommend PAM improvements.
  • Conduct privileged access reviews and ensure compliance with security standards.
  • Collaborate with cross-functional teams and mentor junior engineers.
  • Create clear technical documentation, operational procedures, and runbooks.

What we bring to the table:

  • Opportunity to work on enterprise-scale CyberArk PAM implementations and security transformation initiatives.
  • Exposure to modern identity security, cloud platforms, automation, and Zero Trust environments.
  • Collaborative work environment focused on innovation, security best practices, and continuous learning.
  • Opportunities to contribute to architecture, implementation, governance, and operational excellence.

Requirements

  • 6+ years of experience in CyberArk Privileged Access Management (PAM).
  • Strong expertise in CyberArk architecture, implementation, administration, and upgrades.
  • Hands-on experience with Digital Vault, PSM, CPM, PVWA, PTA, CyberArk Identity, and Conjur.
  • Experience integrating CyberArk with Active Directory, Microsoft Entra ID, LDAP, SIEM platforms, ServiceNow, and cloud environments.
  • Proficiency in automation using REST APIs, PowerShell, Python, and Ansible.
  • Good understanding of privileged credential lifecycle management, application secrets management, and access governance.
  • Knowledge of compliance frameworks including ISO 27001, NIST, SOC 2, PCI-DSS, and CIS Controls.

Apply for this position