CyberArk PAM Developer

Job Title: Senior CyberArk PAM Developer

Location: Bethesda, MD

Job Description:

Key Responsibilities

CyberArk PAM Development & Administration • Install, configure, and administer CyberArk components: EPV, CPM, PVWA, PSM, PSMP, PTA, AIM, and ASCP.

• Manage and administer CyberArk Safes, policies, roles, and permissions across diverse systems (Windows, Linux, databases, and network devices).

• Perform CPM policy management and implement password upload utilities.

• Conduct compliance checks on CyberArk Safes, generating audit reports and alerts.

Custom Development & Integration

• Develop and maintain custom CyberArk connectors and plugins using Java, J2EE, and REST APIs.

• Build automation workflows for account onboarding, session management, and credential rotation using Java CyberArk SDK.

• Extend CyberArk functionality with PACLI, REST APIs, and custom scripts.

• Integrate CyberArk with enterprise IAM solutions (Okta, SailPoint, ForgeRock) and security tools (SIEM, MFA, SOAR).

Automation & Orchestration

• Leverage Python for log parsing, operational automation, and API integrations.

• Use Ansible to automate CyberArk deployments, onboarding, and patching workflows.

• Apply Puppet for enforcing standardized configurations and PAM-related system baselines across hybrid environments.

Architecture & Security Leadership

• Design and implement high-availability (HA) and disaster recovery (DR) strategies for PAM solutions.

• Collaborate with IAM, InfoSec, and business teams to align PAM with Zero Trust architectures.

• Act as technical lead for PAM-related projects, ensuring security best practices.

• Ensure compliance with PCI DSS, SOX, HIPAA, NIST 800-53, CMMC, and FedRAMP frameworks.

Required Skills & Experience

• Total Experience: 15 years in security/IAM/PAM.

• CyberArk: 8 years hands-on experience in implementation, migration, and development.

• Programming: Strong Java, J2EE, RDBMS, LDAP skills for custom connectors and plugins.

• Scripting/Automation: Proficiency in Python, PACLI, Ansible, Puppet.

• CyberArk Development: Expertise in developing/test/deploying custom connectors, plugins, and extensions.

• Strong knowledge of account onboarding, vaulting, and privileged policy configurations.

• Experience with unit, functional, and integration testing for CyberArk solutions.

• Exposure to API integrations with ServiceNow, Splunk, Qualys, and Ansible.

Education & Certifications

• Bachelor’s degree in Computer Science,

Information Security, or related field.

• Required Certifications:

o CyberArk Defender