Posted at: 1 July

PAM Architect - CyberArk

Company

GuidePoint Security

GuidePoint Security is a Herndon, Virginia-based B2B cybersecurity consulting firm specializing in tailored security solutions, incident response, and compliance services for commercial and federal organizations.

Remote Hiring Policy:

GuidePoint Security supports remote work and primarily hires from the U.S., with roles available in various regions including the Mid-Atlantic. Most remote positions are limited to U.S.-based candidates.

Job Type

Full-time

Allowed Applicant Locations

United States

Apply Here

Job Description

We are seeking a CyberArk Architect/Engineer to join our Managed Services team. In this role, you will provide advanced-level support, architecture guidance, and hands-on engineering for 4–5 enterprise customers in a multi-tenant environment. You will be responsible for the ongoing health, performance, and evolution of clients’ CyberArk Privileged Access Management (PAM) solutions.

The ideal candidate brings a strong technical background in CyberArk architecture and operations, exceptional problem-solving skills, and a passion for delivering high-quality, client-facing support in a fast-paced, service-oriented environment.

Key Responsibilities:

  • Serve as the primary CyberArk SME for a portfolio of 4–5 enterprise clients.

  • Architect, implement, and maintain CyberArk PAM solutions including:

    • Enterprise Password Vault (EPV)

    • Central Policy Manager (CPM)

    • Privileged Session Manager (PSM)

    • Privileged Threat Analytics (PTA)

    • Application Access Manager (AAM)

  • Monitor and maintain CyberArk environments, perform patching, upgrades, and health checks.

  • Troubleshoot CyberArk issues and support incident resolution and root cause analysis.

  • Assist customers with integration of CyberArk into their IT and security ecosystem (e.g., LDAP/AD, SIEM, MFA).

  • Develop and maintain architecture diagrams, operational runbooks, and client documentation.

  • Provide security and compliance guidance related to privileged access management.

  • Collaborate with internal teams (e.g., security architects, service delivery managers) to ensure successful service outcomes.

Required experience:

  • 3+ years of hands-on experience with CyberArk implementation, administration, and support.

  • Strong understanding of CyberArk architecture and security best practices.

  • Experience supporting multi-tenant or managed services environments.

  • Knowledge of enterprise infrastructure (Windows, Linux, Active Directory, networking, cloud platforms).

  • Excellent communication skills and experience in a client-facing role.

Preferred experience/certifications:

  • CyberArk certifications, such as:

    • CyberArk Certified Delivery Engineer (CDE)

    • CyberArk Certified Sentry or Defender

  • Experience with cloud PAM deployments (AWS, Azure, GCP).

  • Familiarity with automation/scripting (PowerShell, REST APIs).

  • Experience with ticketing systems (e.g., ServiceNow), and change management processes.

Apply Here