Sr. CyberArk SME/Architect

Job Description:
One of our top clients (Government Integrator) is hiring key resources for their large program/contract supporting Department of Health and Human Services (HHS) Hosting environment. You will support a critical mission for HRSA; maintaining Hosting, Networking, Security, Server, Identity and Access Management, and Tier II Operations in support of the HRSA mission in a 24x7x365 environment.

Requirements:
• 8+ years of hands-on CyberArk engineering experience supporting Privileged Access Management (PAM) environments – configuring and troubleshooting Vault, PVWA, CPM, PSM, PSMP, SCIM
o 6+ years CyberArk troubleshooting in RedHat Linux (RHEL) and Windows servers/systems – failed account reconciliation, failed verifications, and access issues
• Extensive experience managing and maintaining CyberArk platforms deployed in an Azure cloud environment
• Hands-on experience with CyberArk setup for RDP and SSH sessions as well as configurations of VIPs for CyberArk PVWA/PSM/PSMP servers
• Experience analyzing network/firewall logs (i.e., Splunk) to isolate root cause issues within CyberArk
• Strong PowerShell scripting experience
• Must be eligible for Public Trust clearance – extensive government background check w/ fingerprinting (active PT preferred)

Nice to have:
• Experience supporting HHS or NIH programs for the government
• Hands-on Active Directory or Infoblox DNS experience
• CyberArk Engineering Certifications

Responsibilities:
• Manage and maintain the CyberArk Privileged Access Management (PAM) platform, including core components such as Vault, PVWA, CPM, PSM, PSMP, and SCIM across enterprise environments
• Perform CyberArk platform upgrades, migrations, and configuration changes, ensuring stability and performance of environments deployed in Azure cloud and hybrid infrastructure
• Troubleshoot CyberArk operational issues including failed account reconciliation, failed verification, and privileged access failures across Windows and Linux systems
• Analyze CyberArk, Splunk, and network/firewall logs to identify root causes of authentication, session connectivity, and privileged access issues
• Configure and manage privileged session management for RDP and SSH access, including account onboarding, auto-discovery, and privileged credential lifecycle management
• Support CyberArk integrations with Active Directory and enterprise identity infrastructure, managing access policies, permissions, and privileged account governance
• Maintain operational documentation, technical implementation guides, and SOPs, while supporting ServiceNow ticket queues and participating in on-call support rotations