# CyberArk Solution Architect

> Systems Engineering Solutions Corporation · United States (Remote) · Full-time · Posted 2026-06-26

**Workplace:** remote

## Description

This program provides IT services focused on building, securing, and operating the Department of Veteran Affairs LGY’s home loan product-line technology. The contract’s purpose is to modernize and sustain critical home loan technology systems that support LGY’s delivery of mortgage-related services to program stakeholders, to provide continuous delivery and security integration.

**Position Description:** SES is seeking an experienced CyberArk Solution Architect to lead the design, implementation, and modernization of enterprise Privileged Access Management (PAM) solutions for federal and regulated environments. The ideal candidate will bring 10+ years of IT experience, including at least 5 years of hands-on experience designing and implementing CyberArk solutions across complex enterprise environments. This role requires deep technical expertise across the CyberArk product suite, strong understanding of federal cybersecurity requirements, and the ability to develop scalable architecture blueprints, guide implementation teams, and communicate effectively with both technical and executive stakeholders. Candidates must be eligible to obtain and maintain a federal Public Trust clearance or higher.

## Requirements

·       Design, architect, and implement enterprise-scale CyberArk Privileged Access Management (PAM) solutions.

·       Develop CyberArk architecture blueprints, deployment models, integration patterns, and technical roadmaps.

·       Lead CyberArk implementations, upgrades, migrations, and enhancements across large-scale federal or regulated environments.

·       Configure and support CyberArk components such as:

o   Enterprise Password Vault

o   Privileged Session Manager

o   Central Policy Manager

o   Privileged Threat Analytics

o   Endpoint Privilege Manager

o   CyberArk Identity / Workforce Identity

o   Secrets Manager / Conjur

·       Integrate CyberArk with enterprise identity providers, cloud platforms, SIEM tools, ITSM systems, and CI/CD pipelines.

·       Support integration with technologies such as Active Directory, Entra ID/Azure AD, Okta, AWS, Azure, ServiceNow, Splunk, Jenkins, GitLab, and similar enterprise platforms.

·       Translate business, security, and compliance requirements into secure technical designs.

·       Ensure PAM solutions align with federal security frameworks, including Zero Trust, FedRAMP, NIST SP 800-53, FISMA, and agency-specific security policies.

·       Define privileged access policies, onboarding standards, credential rotation requirements, and session monitoring approaches.

·       Lead technical workshops, design reviews, solution demonstrations, and stakeholder briefings.

·       Provide technical leadership to engineers, administrators, and implementation teams.

·       Identify risks, dependencies, technical gaps, and opportunities for automation and process improvement.

·       Support documentation development, including architecture diagrams, implementation plans, operational procedures, and security control mappings.

·       Assist with compliance assessments, audits, and security authorization activities as needed.

·       Serve as a trusted advisor to customers, program leadership, and security stakeholders on PAM strategy and CyberArk best practices.

**Required Skills:**

·       10+ years of IT experience, with at least 5 years focused on CyberArk PAM architecture, design, and implementation.

·       Strong hands-on experience with the CyberArk product suite in enterprise environments.

·       Experience designing PAM solutions for federal, government, or highly regulated environments.

·       Strong understanding of privileged access management concepts, including:

•        Credential vaulting

•        Password rotation

•        Session isolation and monitoring

•        Least privilege

•        Just-in-time access

•        Secrets management

•        Service account management

·       Experience integrating CyberArk with identity providers such as Active Directory, Entra ID/Azure AD, Okta, or similar platforms.

·       Experience integrating CyberArk with cloud environments such as AWS, Azure, or Google Cloud.

·       Familiarity with CI/CD pipeline integrations and DevSecOps environments.

·       Strong knowledge of federal cybersecurity frameworks and compliance requirements, including: Zero Trust Architecture FedRAMP NIST SP 800-53 FISMA NIST Cybersecurity Framework

·       Ability to develop solution architecture documents, design diagrams, implementation plans, and technical standards.

·       Experience leading technical teams through design, implementation, testing, and deployment activities.

·       Ability to troubleshoot complex CyberArk issues and recommend scalable solutions.

·       Strong understanding of enterprise security architecture, identity governance, and access management principles.

·       Must be eligible to obtain and maintain a federal Public Trust clearance or higher.

·       CyberArk certification such as: CyberArk Defender CyberArk Sentry CyberArk CDE CyberArk Guardian CyberArk Trustee Cloud security certification preferred, such as: AWS Certified Security – Specialty Microsoft Certified: Azure Security Engineer Associate Google Professional Cloud Security Engineer CCSP

**Preferred Skills**

·       Experience supporting federal agency cybersecurity, infrastructure, or identity modernization programs.

·       Experience with Zero Trust implementation or federal Zero Trust maturity models.

·       Experience with automation and scripting using PowerShell, Python, REST APIs, or CyberArk APIs.

·       Experience with Infrastructure as Code or DevOps tools such as Terraform, Ansible, Jenkins, GitLab, or GitHub Actions.

·       Experience integrating CyberArk with SIEM, SOAR, or logging platforms such as Splunk, Elastic, or Microsoft Sentinel.

·       Experience supporting Authority to Operate, security assessments, audits, or control validation activities.

·       Familiarity with CMMC, DISA STIGs, CIS Benchmarks, or other federal security baselines.

·       Experience developing operational playbooks, runbooks, and administrator guides.

## Benefits

**SES provides a competitive salary and the following benefits:**

-   Medical
-   Dental
-   Vision
-   AD&D
-   STD
-   LTD
-   Company paid Life Insurance
-   401k with employer contribution
-   Paid Time Off
-   Pet Insurance

## Apply

[Apply at Systems Engineering Solutions Corporation](https://apply.workable.com/systems-engineering-solutions-corporation/j/37AE4869D5/apply)

---
Powered by [Workable](https://www.workable.com)