CyberArk Consultant

Years of Experience

8+ years of relevant experience in CyberArk Implementation - Design & Architecture.
General Description

Creating and implementing strategies for managing privileged access, designing solutions, and ensuring the secure storage and retrieval of sensitive credentials.
Demonstrating in-depth knowledge of CyberArk products, including the Enterprise Password Vault, Privileged Session Manager, and other related tools.
Overseeing the installation, configuration, and integration of CyberArk components to safeguard critical systems and data.
Engaging with different stakeholders via workshops for all design-level discussions and preparing design documents.
Developing and enforcing security policies, access controls, and privileged access management procedures to mitigate risks.
Identifying vulnerabilities and potential threats, and implementing measures to protect against unauthorized access.
Maintaining detailed records, reports, and documentation of CyberArk configurations and activities.
Ensuring that CyberArk solutions are up-to-date and providing support for system upgrades and maintenance.
Interacting with different teams to gather the required data for integration/onboarding of target systems/devices.
Resolving technical issues and providing expert guidance to address security challenges.
Skills / Technical Requirements

Expertise in providing PAM solutions using CyberArk.
Experience with CyberArk from version 11.xx onwards.
Designing, deploying, and supporting high-performance, high-availability PAM environments with any number of target endpoints, creating workflows, custom connectors, and policies.
Performing enhancements in CyberArk Core PAS.
Onboarding target systems onto CyberArk Core PAS.
Supporting migration from Centrify to CyberArk Core PAS.
Integrating Legacy IDM instances with CyberArk to manage human accounts.
Supporting RedHat migration.
Migrating CyberArk shared and pooled accounts.
Creating named tiered accounts model and onboarding named tiered accounts in CyberArk and assigning them to the correct IDM User Groups.
Working on Migration models - Pooled Accounts to Named Tiered Account.
Performing Centrify Access Data Analysis to yield the current access data model and merge into the new Tiered Access Model.
Deploying, installing, configuring CyberArk components (Vault, CPM, PVWA, PSM, PSMP, and AIM) as per client requirements.
Hands-on experience or knowledge in configuring PTA, EPM.
Integrating various platforms with CyberArk such as Windows, UNIX, Databases, network devices, SSH Keys, SAP, etc.
Creating and managing Safes, platforms, and owners.
Knowledge of Password Upload Utility and PACLI.
Experience integrating CyberArk solutions with LDAP, SIEM, SNMP, and other identity management systems.
Strong scripting skills using PowerShell, Python, or Shell scripting for automation and customization of CyberArk solutions.
Knowledge of regulatory requirements and industry standards related to privileged access management, such as NIST, CIS, and GDPR.
Experience with security monitoring tools and integrating CyberArk with SIEM systems.
Soft Skills

Excellent verbal and written communication skills in English.
Ability to present solutions to clients remotely and in person if needed.
Strong documentation skills for creating design documents for proposed technical solutions.
Excellent problem-solving skills.
Strong collaboration skills for working with virtual and distributed teams.
Certifications

Possession of relevant CyberArk certifications such as CyberArk Certified Delivery Engineer (CDE) or CyberArk Certified Trustee (CTP) is a significant advantage.
Educational Qualifications

University degree in IT or IT Security.