Cyber Security Engineer (CyberArk)

CyberArk Engineer

We are seeking a skilled and motivated CyberArk Engineer to join our growing security engineering team. In this role, you will be responsible for designing, implementing, and supporting privileged access management (PAM) solutions using CyberArk, ensuring the highest levels of security, compliance, and operational efficiency.

The ideal candidate will hold a CyberArk Certified Delivery Engineer (CDE) certification and have experience with Sentry (preferred). You will collaborate with cross‑functional teams to protect sensitive data and critical systems from unauthorized access.

• Manage the onboarding and lifecycle of privileged accounts across various systems and environments.
• Implement CyberArk policies and security best practices to align with compliance and regulatory standards.
• Develop and maintain automation scripts and integrations with CyberArk using REST APIs, PowerShell, and other tools.
• Monitor and troubleshoot CyberArk infrastructure and user issues, providing escalation support as needed.
• Troubleshoot and remediate CyberArk Central Policy Manager (CPM) failures, including credential rotation errors, connectivity issues, and policy misconfigurations.
• Analyse CPM logs and error codes to identify root causes and implement durable solutions in collaboration with infrastructure and application teams.
• Perform health checks and tuning of CPM components to ensure stability and optimal performance.
• Basic understanding of custom CPM and PSM connectors for target platforms not natively supported by CyberArk.
• Work with application owners to gather requirements for new connectors, create integration documentation, and test connector functionality in pre‑production environments.
• Leverage scripting (e.g., PowerShell, Python) to enhance connector behaviour and automate remediation tasks.
• Contribute to the connector certification process and maintain version control for custom components.
• Assist with audits, documentation, and reporting of privileged access activities.
• Work with IT, DevOps, and Security teams to integrate PAM solutions into existing workflows.
• Stay up to date with emerging threats, PAM trends, and CyberArk product updates.

• CyberArk Certified Delivery Engineer (CDE) certification (must‑have)
• 3+ years of experience implementing and supporting CyberArk solutions in enterprise environments
• Proficiency with CyberArk components and architecture
• Strong scripting skills (PowerShell, Python, etc.) and experience using CyberArk APIs
• Understanding of Identity and Access Management (IAM) concepts, Zero Trust, and least privilege
• Solid knowledge of Windows/Linux systems, Active Directory, and network security fundamentals

• Experience or certification with Sentry
• CyberArk Defender or Guardian certification(s)
• Familiarity with cloud PAM implementations (AWS, Azure, GCP)
• Experience with SIEM tools and security monitoring
• Bachelor’s degree in Computer Science, Information Security, or related field

Interested candidates may apply through the application system. We regret to inform only Shortlisted candidates will be notified.