CyberArk/PAM Architect (Alpharetta)

Job Title: CyberArk Architect Location: Alpharetta ,GA (Hybrid) Overview The CyberArk Architect is responsible for designing and implementing Privileged Access Management (PAM) solutions using CyberArk. This role ensures that privileged accounts, credentials, and access pathways across the enterprise are secure, monitored, and compliant with organizational policies and regulatory requirements. The CyberArk Architect partners closely with Security, Infrastructure, and Application teams to safeguard critical systems against unauthorized access. Key Responsibilities CyberArk Engineering Design and configure PAM solutions, mainly using CyberArk PAM product Install and configure CyberArk components including Vault, PVWA, CPM, PSM, PSMP , and plugins. Develop custom connectors, scripts, and PAM integrations Security & Compliance Enforce least‑privilege principles for users, applications, and systems. Implement and manage privileged session monitoring, recording, and auditing. Ensure CyberArk meets regulatory and compliance standards (SOX, PCI, HIPAA, etc.). Identify and remediate security vulnerabilities related to privileged access. Automation & Integration Improve/Automate process around CyberArk suite (account onboarding, password rotations, and provisioning workflows). Integrate CyberArk with AD, LDAP, SIEM, ticketing systems, cloud platforms (AWS/Azure/GCP), and DevOps toolchains. Operational Support Troubleshoot CyberArk complex issues and provide Tier‑III support. Create and maintain documentation (runbooks, architecture diagrams, procedures). Support incident response teams in privilege‑related investigations. Required Skills & Qualifications Bachelor’s degree in computer science, Information Security, or related field (or equivalent experience). 10+ years’ experience in cybersecurity, IAM/PAM, or infrastructure security. Hands‑on experience with CyberArk Core Privileged Access Security suite. Strong understanding of: Identity & Access Management concepts Windows & Linux administration Active Directory & LDAP Networking fundamentals Secrets management Experience with scripting languages (PowerShell, Python, Bash). Knowledge of cloud platforms (AWS, Azure, GCP) and modern DevOps tools. Experience with REST APIs and automation frameworks. Preferred Qualifications CyberArk Sentry certification. Understanding of Zero Trust architectures. Familiarity with regulatory frameworks (NIST, ISO 27001, CIS). Soft Skills Strong analytical and problem‑solving abilities. Ability to communicate clearly across technical and non‑technical teams. Self‑driven, detail‑oriented, and comfortable managing priorities in a fast‑paced environment.