Senior PAM Engineer - CyberArk; Remote

Senior PAM Engineer - Cyber Ark (Remote in the US)

Remote

We’re looking for a Senior Cyber Ark Engineer to design, implement, and optimize Privileged Access Management (PAM) solutions for our clients. This role is ideal for someone with a strong professional services or consulting background — you’ve worked across multiple client environments, managed competing priorities, and know how to translate business requirements into secure, scalable Cyber Ark architectures.

This is a 100% remote position but applicants must be in the US to be considered.

• Lead end-to-end Cyber Ark implementations, upgrades, and migrations across diverse client environments (on-prem, hybrid, and cloud)
• Design and deploy core Cyber Ark components:
  Vault, CPM, PVWA, PSM, PSMP, and PTA
• Conduct discovery workshops with client stakeholders to gather requirements and define PAM strategy and architecture
• Develop and execute onboarding plans for privileged accounts (Windows, Unix/Linux, databases, network devices, cloud platforms)
• Integrate Cyber Ark with adjacent systems (SIEM, ITSM, IAM, ticketing tools, AD/LDAP) via REST APIs and connectors
• Create platform configurations, custom connectors, and PSM plugins/recordings for non-standard target systems
• Produce clear, client‑ready documentation: solution designs, runbooks, architecture diagrams, and knowledge transfer materials
• Manage project timelines, scope, and client communications, often across multiple concurrent engagements
• Troubleshoot complex production issues and provide escalation support
• Mentor junior engineers and contribute to internal methodology, accelerators, and best‑practice playbooks
• Stay current on Cyber Ark product roadmap, releases, and emerging PAM/identity security trends
• Embrace emerging technologies, including AI tools, to work smarter, solve problems, and drive better business outcomes

• 5+ years of hands‑on Cyber Ark experience, including at least 2+ years in a professional services, consulting, or systems integrator environment
• Demonstrated experience leading or playing a key role in multiple full‑lifecycle Cyber Ark implementations for different clients
• Deep technical knowledge of Cyber Ark PAS suite (Vault, CPM, PVWA, PSM, PSMP, PTA/PTA‑EPM)
• Experience with platform onboarding across varied target types (Windows, Unix/Linux, databases, network/security devices, cloud IAM)
• Strong scripting skills (Power Shell, Python, or similar) for automation and custom integrations
• Familiarity with REST APIs and experience building or supporting Cyber Ark integrations
• Excellent client‑facing communication skills — comfortable presenting to both technical teams and executive stakeholders
• Ability to manage ambiguity, shifting priorities, and multiple client engagements simultaneously
• Strong documentation skills and attention to detail

• Cyber Ark certifications (CDE, Sentry, Defender, or equivalent)
• Experience with Cyber Ark cloud offerings (Privilege Cloud, Identity Security Platform)
• Exposure to other IAM/PAM tools (Beyond Trust, Delinea, SailPoint, Okta) for comparative or migration context
• Experience with Dev Ops/Secrets Manager use cases (Cyber Ark Conjur, AAM)
• Background in regulated industries (finance, healthcare, government) and associated compliance frameworks (SOX, HIPAA, PCI‑DSS)

• Remote workforce primarily (U.S. based only); some travel may be required for certain positions, on‑site may be required for Federal positions
• Group Medical Insurance options:
  Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans) or High Deductible Health Plan with HSA (GuidePoint pays 100% of employee premiums and 75% for family plans)
• Group Dental Insurance:
  GuidePoint pays 100% of the premium for employees and 75% for family plans
• 12 corporate holidays and a Flexible Time Off (FTO) program
• Healthy mobile phone and home internet allowance
• Eligibility for retirement plan after 2 months at open enrollment

As set forth in GuidePoint Security’s Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law.