Cyber Ark Team Lead Privileged Access Management
XMS Solutions, Inc. · Springfield, VA · 2 wk ago
EngineeringFull-time
Key Responsibilities
- Lead and mentor a team of 3-5 CyberArk engineers, providing day-to-day direction, technical guidance, and support
- Own team deliverables, ensuring work is prioritized, executed, and completed with quality and consistency
- Partner with leadership to align team capacity with project demand and operational needs
- Establish and reinforce standards, processes, and accountability across the team
- Oversee administration and maintenance of the CyberArk Privileged Access Security (PAS) platform, including Vault, CPM, PVWA, PSM, and PTA
- Ensure platform stability, performance, and security across all environments
- Lead upgrades, patching, and configuration management efforts
- Drive onboarding of privileged accounts and enforcement of least-privilege access controls
- Oversee password management, session management, and policy enforcement
- Ensure consistent application of PAM best practices across systems and teams
- Guide integrations between CyberArk and enterprise systems including Active Directory, cloud platforms (Azure/AWS), databases, and network devices
- Support automation efforts using scripting (PowerShell, Python, Bash) to improve efficiency and reduce manual effort
- Manage custom integrations and enhancements as needed
- Oversee monitoring and troubleshooting of CyberArk components and related integrations
- Ensure regular audits are conducted and reporting supports internal policies and regulatory requirements
- Support compliance initiatives aligned to frameworks such as NIST, SOX, FISMA, and FedRAMP
- Participate in incident response and investigations involving privileged access
- Partner with security, infrastructure, and application teams to ensure secure access to critical systems
- Provide technical guidance, training, and support to users and stakeholders
- Act as an escalation point for complex technical or operational issues
Qualifications
- Active Secret clearance required (must be held at time of hire)
- 5+ years of experience in IT security or systems administration, with at least 3 years focused on CyberArk
- Prior experience leading or mentoring engineers, or acting in a technical lead capacity
- Strong expertise in CyberArk Privileged Access Security (Vault, PVWA, PSM, CPM, PTA)
- Experience integrating CyberArk with Active Directory, cloud platforms (Azure/AWS), databases, and network devices
- Proficiency in scripting (PowerShell, Python, Bash) for automation and operational efficiency
- Working knowledge of federal compliance frameworks (NIST, SOX, FISMA, FedRAMP)
- CyberArk certification (Defender, Sentry, or Guardian) strongly preferred