PAM Architect

Summary

Join GuidePoint Security as a CyberArk Architect/Engineer and provide advanced support, architecture guidance, and hands-on engineering for enterprise clients. You will be responsible for maintaining the health and performance of clients’ CyberArk PAM solutions, troubleshooting issues, and assisting with integrations. The ideal candidate possesses a strong technical background in CyberArk architecture and operations, exceptional problem-solving skills, and client-facing experience. Responsibilities include serving as the primary CyberArk SME, architecting and maintaining CyberArk PAM solutions, monitoring environments, troubleshooting issues, and collaborating with internal teams. The role requires 3+ years of hands-on CyberArk experience, a strong understanding of CyberArk architecture, and experience in multi-tenant environments. GuidePoint offers a remote-work environment, comprehensive health insurance, dental insurance, paid time off, and a retirement plan.

Requirements

• 3+ years of hands-on experience with CyberArk implementation, administration, and support
• Strong understanding of CyberArk architecture and security best practices
• Experience supporting multi-tenant or managed services environments
• Knowledge of enterprise infrastructure (Windows, Linux, Active Directory, networking, cloud platforms)
• Excellent communication skills and experience in a client-facing role

Responsibilities

• Serve as the primary CyberArk SME for a portfolio of 4–5 enterprise clients
• Architect, implement, and maintain CyberArk PAM solutions including: Enterprise Password Vault (EPV), Central Policy Manager (CPM), Privileged Session Manager (PSM), Privileged Threat Analytics (PTA), Application Access Manager (AAM)
• Monitor and maintain CyberArk environments, perform patching, upgrades, and health checks
• Troubleshoot CyberArk issues and support incident resolution and root cause analysis
• Assist customers with integration of CyberArk into their IT and security ecosystem (e.g., LDAP/AD, SIEM, MFA)
• Develop and maintain architecture diagrams, operational runbooks, and client documentation
• Provide security and compliance guidance related to privileged access management
• Collaborate with internal teams (e.g., security architects, service delivery managers) to ensure successful service outcomes

Preferred Qualifications

• CyberArk certifications, such as: CyberArk Certified Delivery Engineer (CDE), CyberArk Certified Sentry or Defender
• Experience with cloud PAM deployments (AWS, Azure, GCP)
• Familiarity with automation/scripting (PowerShell, REST APIs)
• Experience with ticketing systems (e.g., ServiceNow), and change management processes

Benefits

• Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family) and GPS will contribute in one lump sum: ($500 per EE annually / $1000 per family annually (includes spouse/children/family options)
• Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans
• 12 corporate holidays and a Flexible Time Off (FTO) program
• Healthy mobile phone and home internet allowance
• Eligibility for retirement plan after 2 months at open enrollment
• Pet Benefit Option
• Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)