Cyber Security Engineer (CyberArk / 2HC)

• Deploy, configure, and maintain CyberArk components, including Vault, CPM, PSM, PSMP, HTML5GW, CP, CCP, EVD and PVWA.
• Manage the onboarding and lifecycle of privileged accounts across various systems and environments.
• Implement CyberArk policies and security best practices to align with compliance and regulatory standards.
• Develop and maintain automation scripts and integrations with CyberArk using REST APIs, PowerShell, and other tools.
• Monitor and troubleshoot CyberArk infrastructure and user issues, providing escalation support as needed.
• Troubleshoot and remediate CyberArk Central Policy Manager (CPM) failures, including credential rotation errors, connectivity issues, and policy misconfigurations.
• Analyse CPM logs and error codes to identify root causes and implement durable solutions in collaboration with infrastructure and application teams.
• Perform health checks and tuning of CPM components to ensure stability and optimal performance.
• Develop and maintain custom CPM and PSM connectors for target platforms not natively supported by CyberArk.
• Work with application owners to gather requirements for new connectors, create integration documentation, and test connector functionality in pre-production environments.
• Leverage scripting (e.g., PowerShell, Python) to enhance connector behavior and automate remediation tasks.
• Contribute to the connector certification process and maintain version control for custom components.
• Assist with audits, documentation, and reporting of privileged access activities.
• Work with IT, DevOps, and Security teams to integrate PAM solutions into existing workflows.
• Stay up to date with emerging threats, PAM trends, and CyberArk product updates.

• CyberArk Certified Delivery Engineer (CDE) certification (must-have).
• 3+ years of experience implementing and supporting CyberArk solutions in enterprise environments.
• Proficiency with CyberArk components and architecture.
• Strong scripting skills (PowerShell, Python, etc.) and experience using CyberArk APIs.
• Understanding of identity and access management (IAM) concepts, Zero Trust, and least privilege.
• Solid knowledge of Windows/Linux systems, Active Directory, and network security fundamentals.

• Experience or certification with Sentry.
• CyberArk Defender or Guardian certification(s).
• Familiarity with cloud PAM implementations (AWS, Azure, GCP).
• Experience with SIEM tools and security monitoring.
• Bachelor’s degree in computer science, Information Security, or related field.

Interested candidates may apply through the application system. We regret to inform only Shortlisted candidates will be notified.