Haystack
← Back to Jobs
Remote
Other

CYBERARK SOLUTION ARCHIECT (USC)

Connexions Data IncUnited States🇺🇸United StatesPosted 10 Jul 2026

Quick Overview

Work Type
Remote
Level
Mid Senior

Job Description

CYBERARK SOLUTION ARCHIECT

Start Date: Immediate
Duration: 1 year to start (
With Possible Extension)
Location: Remote
Years of Experience: 10+ years of experience + Public Trust

Position Description: Client is seeking an experienced CyberArk Solution Architect to lead the design, implementation, and modernization of enterprise Privileged Access Management (PAM) solutions for federal and regulated environments. The ideal candidate will bring 10+ years of IT experience, including at least 5 years of hands-on experience designing and implementing CyberArk solutions across complex enterprise environments. This role requires deep technical expertise across the CyberArk product suite, strong understanding of federal cybersecurity requirements, and the ability to develop scalable architecture blueprints, guide implementation teams, and communicate effectively with both technical and executive stakeholders. Candidates must be eligible to obtain and maintain a federal Public Trust clearance or higher.

Responsibilities:

  • Design, architect, and implement enterprise-scale CyberArk Privileged Access Management (PAM) solutions.
  • Develop CyberArk architecture blueprints, deployment models, integration patterns, and technical roadmaps.
  • Lead CyberArk implementations, upgrades, migrations, and enhancements across large-scale federal or regulated environments.
  • Configure and support CyberArk components such as:
    • Enterprise Password Vault
    • Privileged Session Manager
    • Central Policy Manager
    • Privileged Threat Analytics
    • Endpoint Privilege Manager
    • CyberArk Identity / Workforce Identity
    • Secrets Manager / Conjur
  • Integrate CyberArk with enterprise identity providers, cloud platforms, SIEM tools, ITSM systems, and CI/CD pipelines.
  • Support integration with technologies such as Active Directory, Entra ID/Azure AD, Okta, AWS, Azure, ServiceNow, Splunk, Jenkins, GitLab, and similar enterprise platforms.

This role offers the opportunity to design and implement enterprise Privileged Access Management solutions that support large-scale federal or regulated environments. The CyberArk Solution Architect will help strengthen identity security, support Zero Trust modernization, and collaborate with technical and executive stakeholders on mission-critical cybersecurity initiatives.

  • Translate business, security, and compliance requirements into secure technical designs.
  • Ensure PAM solutions align with federal security frameworks, including Zero Trust, FedRAMP, NIST SP 800-53, FISMA, and agency-specific security policies.
  • Define privileged access policies, onboarding standards, credential rotation requirements, and session monitoring approaches.
  • Lead technical workshops, design reviews, solution demonstrations, and stakeholder briefings.
  • Provide technical leadership to engineers, administrators, and implementation teams.
  • Identify risks, dependencies, technical gaps, and opportunities for automation and process improvement.
  • Support documentation development, including architecture diagrams, implementation plans, operational procedures, and security control mappings.
  • Assist with compliance assessments, audits, and security authorization activities as needed.
  • Serve as a trusted advisor to customers, program leadership, and security stakeholders on PAM strategy and CyberArk best practices.

Required Skills:

  • 10+ years of IT experience, with at least 5 years focused on CyberArk PAM architecture, design, and implementation.
  • Strong hands-on experience with the CyberArk product suite in enterprise environments.
  • Experience designing PAM solutions for federal, government, or highly regulated environments.
  • Strong understanding of privileged access management concepts, including:
    • Credential vaulting
    • Password rotation
    • Session isolation and monitoring
    • Least privilege
    • Just-in-time access
    • Secrets management
    • Service account management
  • Experience integrating CyberArk with identity providers such as Active Directory, Entra ID/Azure AD, Okta, or similar platforms.
  • Experience integrating CyberArk with cloud environments such as AWS, Azure, or Google Cloud.
  • Familiarity with CI/CD pipeline integrations and DevSecOps environments.
  • Strong knowledge of federal cybersecurity frameworks and compliance requirements, including: Zero Trust Architecture FedRAMP NIST SP 800-53 FISMA NIST Cybersecurity Framework
  • Ability to develop solution architecture documents, design diagrams, implementation plans, and technical standards.
  • Experience leading technical teams through design, implementation, testing, and deployment activities.
  • Ability to troubleshoot complex CyberArk issues and recommend scalable solutions.
  • Strong understanding of enterprise security architecture, identity governance, and access management principles.
  • Must be eligible to obtain and maintain a federal Public Trust clearance or higher.
  • CyberArk certification such as: CyberArk Defender CyberArk Sentry CyberArk CDE CyberArk Guardian CyberArk Trustee Cloud security certification preferred, such as: AWS Certified Security Specialty Microsoft Certified: Azure Security Engineer Associate Google Professional Cloud Security Engineer CCSP

Preferred Skills

  • Experience supporting federal agency cybersecurity, infrastructure, or identity modernization programs.
  • Experience with Zero Trust implementation or federal Zero Trust maturity models.
  • Experience with automation and scripting using PowerShell, Python, REST APIs, or CyberArk APIs.
  • Experience with Infrastructure as Code or DevOps tools such as Terraform, Ansible, Jenkins, GitLab, or GitHub Actions.
  • Experience integrating CyberArk with SIEM, SOAR, or logging platforms such as Splunk, Elastic, or Microsoft Sentinel.
  • Experience supporting Authority to Operate, security assessments, audits, or control validation activities.
  • Familiarity with CMMC, DISA STIGs, CIS Benchmarks, or other federal security baselines.
  • Experience developing operational playbooks, runbooks, and administrator guides.

Skills

AWS
Splunk
Account Management
Active Directory
Ansible
Azure
Compliance
GitHub Actions
Google Cloud
Jenkins
Onboarding
PowerShell
Process Improvement
Python
REST
ServiceNow
Terraform
Vault
Zero Trust

Similar jobs