Cyber Security Consultant (CyberArk)

Job Title: CyberArk Consultant – L3

Location: Frisco, TX

Duration: Long term Contract

Onsite Role

Years of Experience

8 years of relevant experience in CyberArk Implementation - Design & Architecture.

General Description

• Creating and implementing strategies for managing privileged access, designing solutions, and ensuring the secure storage and retrieval of sensitive credentials.
• Demonstrating in-depth knowledge of CyberArk products, including the Enterprise Password Vault, Privileged Session Manager, and other related tools.
• Overseeing the installation, configuration, and integration of CyberArk components to safeguard critical systems and data.
• Engaging with different stakeholders via workshops for all design-level discussions and preparing design documents.
• Developing and enforcing security policies, access controls, and privileged access management procedures to mitigate risks.
• Identifying vulnerabilities and potential threats, and implementing measures to protect against unauthorized access.
• Maintaining detailed records, reports, and documentation of CyberArk configurations and activities.
• Ensuring that CyberArk solutions are up-to-date and providing support for system upgrades and maintenance.
• Interacting with different teams to gather the required data for integration/onboarding of target systems/devices.
• Resolving technical issues and providing expert guidance to address security challenges.

Skills / Technical Requirements

• Expertise in providing PAM solutions using CyberArk.
• Experience with CyberArk from version 11.xx onwards.
• Designing, deploying, and supporting high-performance, high-availability PAM environments with any number of target endpoints, creating workflows, custom connectors, and policies.
• Performing enhancements in CyberArk Core PAS.
• Onboarding target systems onto CyberArk Core PAS.
• Supporting migration from Centrify to CyberArk Core PAS.
• Integrating Legacy IDM instances with CyberArk to manage human accounts.
• Supporting RedHat migration.
• Migrating CyberArk shared and pooled accounts.
• Creating named tiered accounts model and onboarding named tiered accounts in CyberArk and assigning them to the correct IDM User Groups.
• Working on Migration models - Pooled Accounts to Named Tiered Account.
• Performing Centrify Access Data Analysis to yield the current access data model and merge into the new Tiered Access Model.
• Deploying, installing, configuring CyberArk components (Vault, CPM, PVWA, PSM, PSMP, and AIM) as per client requirements.
• Hands-on experience or knowledge in configuring PTA, EPM.
• Integrating various platforms with CyberArk such as Windows, UNIX, Databases, network devices, SSH Keys, SAP, etc.
• Creating and managing Safes, platforms, and owners.
• Knowledge of Password Upload Utility and PACLI.
• Experience integrating CyberArk solutions with LDAP, SIEM, SNMP, and other identity management systems.
• Strong scripting skills using PowerShell, Python, or Shell scripting for automation and customization of CyberArk solutions.
• Knowledge of regulatory requirements and industry standards related to privileged access management, such as NIST, CIS, and GDPR.
• Experience with security monitoring tools and integrating CyberArk with SIEM systems.

Soft Skills

• Excellent verbal and written communication skills in English.
• Ability to present solutions to clients remotely and in person if needed.
• Strong documentation skills for creating design documents for proposed technical solutions.
• Excellent problem-solving skills.
• Strong collaboration skills for working with virtual and distributed teams.

Certifications

Possession of relevant CyberArk certifications such as CyberArk Certified Delivery Engineer (CDE) or CyberArk Certified Trustee (CTP) is a significant advantage.

Educational Qualifications

University degree in IT or IT Security.