CyberArk Engineer

Role Summary
We are seeking a mid-level to senior, and independent, CyberArk Engineer with deep, hands-on expertise in CyberArk AAM (Application Access Manager), now integral to the CyberArk Secret Manager solution. This is a hands-on, project-based role where you will be responsible for the end-to-end deployment, configuration, and integration of the core Secret Manager components: Credential Provider (CP), Central Credential Provider (CCP), and Application Service Credential Provider (ASCP).
The ideal candidate is a proactive problem-solver who can work autonomously or part of the team, learn quickly in a fast-paced environment, and bring substantial, proven experience to the project from day one. You will be part of a team of technical subject matter expert for Secret Manager implementation.
 
 Responsibilities

• Hands-on installation, configuration, and integration of the CyberArk Secret Manager suite (CP, CCP, ASCP) across both Windows and Linux environments.
• Architect and implement the solution for managing Functional/Service Accounts, ensuring high availability and disaster recovery.
• Configure and optimise the Central Credential Provider (CCP) and Application Service Credential Provider (ASCP) for seamless application integration.
• Perform advanced CyberArk PAM administration tasks, including the creation and management of Safes, platforms, and user permissions.
• Develop and customise platforms to meet the specific requirements of various application and database technologies.
• Define and implement access control policies for Safes, ensuring the principle of least privilege.
• Integrate CyberArk Secret Manager with a wide range of applications, middleware, and databases for automated credential rotation and retrieval.
• Collaborate with application teams to troubleshoot and resolve integration issues related to the CCP and ASCP components.
• Script and automate routine tasks using PowerShell, Linux Bash and REST APIs to improve efficiency.
• Proven experience automating with Ansible
• Work independently or part of the team, providing guidance to application administrator/developer and application owners.
• Create and maintain detailed technical documentation, including design diagrams, operational runbooks, and integration guides.
• Participate in project meetings, providing clear updates on progress, challenges, and solutions.
• Communicate and implement strategies alongside the technical team

Qualifications/Experience

• Must-have Technical Skills:
  • Proven hands-on experience in deploying and configuring CyberArk Secret Manager, specifically with its core components: Central Policy Manager (CP), Central Credential Provider (CCP), and Application Service Credential Provider (ASCP).
  • Expert-level knowledge of CyberArk AAM (Application Access Manager) is a non-negotiable requirement for this position.
  • Strong, hands-on experience as a CyberArk PAM Administrator: creating Safes, designing platforms, managing permissions, and onboarding accounts.
  • Practical experience managing Windows and Linux Functional/Service Accounts within CyberArk.
  • Solid understanding of networking, Windows/Linux server administration, and core security concepts.
• Personal Attributes:
  • Independent & Proactive: Ability to work with minimal supervision, take ownership of tasks, and drive them to completion.
  • Fast-Paced Learner: Must be able to quickly assimilate new information and adapt to a dynamic project environment.
  • Proven Experience: Candidate must be ready to contribute immediately based on past, demonstrable project experience.
  • Excellent Problem-Solver: Strong analytical and troubleshooting skills for complex technical issues.
  • A people person.