Cyberark PAM Lead Engineer

Position: Cyberark PAM Lead Engineer
Location: Santa Fe, NM (Remote) Job Type: Contract (12 Months)

Responsibilities:
Analyze and gather enterprise requirements for privileged access management (PAM) security.
Install and configure CyberArk components, including Enterprise Password Vault (EPV), Central Policy
Manager (CPM), Password Vault Web Access (PVWA), Privileged Session Manager (PSM), Privileged
Session Manager Proxy (PSMP), and Privileged Threat Analytics (PTA).
Configure and deploy the Application Identity Manager (AIM) and Application Service Credential Provider (ASCP).
Integrate CyberArk with third-party applications and tools such as Ansible, ServiceNow, and Qualys.
Develop and maintain automation scripts using Python, PACLI, and REST APIs for process automation and operational efficiency.
Develop and maintain automation scripts using PACLI and REST APIs.
Customize and code CyberArk solutions to meet specific business needs.
Manage and administer CyberArk Safes, policies, roles, and permissions across various systems (Windows servers, UNIX/Linux servers, databases, networking devices, etc.).
Create and manage custom connectors/plugins to integrate applications with CyberArk.
Perform CPM policy management and implement password upload utilities.
Conduct compliance checks on CyberArk Safes, providing alerts and generating reports as needed.
Identify and address gaps in security architecture, recommending best practices and processes.
Act as a technical lead for initiatives involving privileged access management and CyberArk solutions.
Design and implement high-availability (HA) architectures and disaster recovery (DR) strategies for PAM solutions.
Partner with IAM, security, and business stakeholders to ensure seamless integration of PAM with technologies such as IDM, AD, MFA, SIEM, and incident response tools.
Onboard out-of-the-box (OOB) and custom applications and infrastructure servers to CyberArk.

Desired Skills:
Total Experience 15 Years in related domain
Minimum of 8 years of experience in privileged access management or equivalent CyberArk experience.
Hands-on expertise in designing, architecting, and migrating CyberArk solutions.
Proficiency in Python scripting for process automation and system integrations.
Strong knowledge of account onboarding, vaulting, and policy configuration.
Experience in developing, testing, and deploying custom connectors and plugins.
Proficiency in the installation and configuration of CyberArk components.
Hands-on experience conducting unit, functional, and integration testing for CyberArk implementations.
Strong understanding of Java, J2EE, RDBMS, and directory servers/LDAP.
Skilled in developing and implementing custom connectors for CyberArk.

Educational Qualifications:
Bachelor s degree in Computer Science, Information Technology, or a related field, or equivalent professional experience.