CyberArk Senior Systems Engineer

We have an outstanding Contract to Hire position for aCyberArk Senior Systems Engineerto join a leading Company located in theWashington, DCsurrounding area.

Pay Rate (Range) is $ 134.00 - $143.57

Must be able to obtain and maintain a Public Trust.

Apply for a career-defining opportunity as a CyberArk Senior Systems Engineer, where you will lead the charge in strengthening the security posture of the Department of Transportation (DOT) through the implementation and maintenance of a cutting-edge Privileged Access Management (PAM) solution. Collaborating closely with external stakeholders, including DHS CISA integrators, your expertise will be pivotal in operationalizing the PAM solution across development, testing, and production environments, ensuring robust security and efficient access management.

Your responsibilities will extend beyond routine operations to include the meticulous management of roles and safes, deploying software updates, and generating insightful reports on PAM tool efficacy. You will play a critical role in identifying and mitigating security vulnerabilities, offering on-call support to address any challenges that arise swiftly. In addition to ensuring the seamless functionality of the PAM solution, you will contribute to the organization's resilience through annual disaster recovery testing, documentation of recovery plans, and performing vital operating system patching on vault appliances. Your insights will guide enhancements and changes within the PAM framework, adhering to DOT's Change Management processes.

By joining our team, you'll leverage your subject matter expertise to recommend and implement reporting capabilities that align with DHS CISA requirements, ensuring data integrity and compliance. This role not only offers the chance to impact the DOT's cybersecurity posture significantly but also positions you at the forefront of protecting critical infrastructure against evolving threats.

Responsibilities :

• Responsible for providing unique cyber domain expertise and guidance to the delivery team and stakeholders

• Work may encompass one or more specialty areas of cyber security, cyberspace, and cyber operations, including: providing expert knowledge and insight into compliance, cyber hunt, incident response, risk and vulnerability assessment, and emerging cyber threats requirements; guiding technical support to penetration testers, incident handlers, cyber analysts, and product support personnel relative to the cyber arena; assisting in the management of complex networks and systems of differing classification levels systems; integrating cyber security requirements with communication and IT; and utilizing other principles in the professional body of knowledge

• Performs research, design evaluation, technical development, system integration planning, and other tasks in specific technical areas

• May be responsible for complex cyber, technical, engineering, and architecture tasks

• Often coordinates and guides the activities of technical staff members assigned to specific tasks

• May supervise and/or guide a broad team of technical staff members/engineers

• Performs day-to-day activities required to assist and identify technology solutions that meet enterprise requirements

• Maps functional requirements into technological requirements and identifies technologies that meet the technological requirements

• Conducts proof of concept, pilots, and demos for the purposes of evaluating the suitability of given technologies for meeting requirements

• Evaluates the tradeoffs between competing solutions and develops a quantitative-driven analysis of alternatives

• Produces written analysis of research and recommendation papers that clearly describe the process followed, alternatives considered, evaluation criteria, and rationale for recommendation and need for additional work

Basic Hiring Criteria :

• Bachelor's degree or equivalent and eighteen (18) years of related experience; master's degree and sixteen (16) years of related experience; Ph.D. and thirteen (13) years of experience; twenty (20) years of related experience with no degree

• Certified CyberArk Sentry qualification, demonstrating advanced knowledge and skills in managing the CyberArk Privileged Access Security Solution

• Candidate must be a U.S. citizen or green card holder who has resided in the U.S. for at least 3 years and has the ability to obtain a public trust

• Minimum 8 years of related experience providing business solutions engineering support, including architectural design, engineering design, proof of concept development, pilots, analysis, results, and documentation

• Minimum three years of experience in designing and implementing comprehensive lifecycle management processes for CyberArk within an organization comparable to the Department of Transportation (DOT), showcasing a deep understanding of privileged access management solutions

• Minimum five years of server administration experience, including proficiency with Windows Server 2019 and Red Hat Enterprise Linux (RHEL) 8, indicating a strong foundation in managing and maintaining critical server infrastructure

• Minimum three years of dedicated CyberArk experience in a design architect role, encompassing disaster recovery planning, ensuring high availability, and conducting system administration within a large-scale enterprise environment similar to DOT, highlighting the ability to architect robust and resilient CyberArk deployments

Desired Qualifications :

• Demonstrated proficiency in integrating CyberArk with SailPoint, showcasing the capability to harmonize privileged access management with identity governance solutions for enhanced security protocols.

• Comprehensive knowledge of both the user interface aspects of Active Directory, such as account management and Group Policy, and the technical components, including AD Schema, Public Key Infrastructure (PKI), and automation via PowerShell, ensuring a well-rounded approach to directory services management

• Solid foundational understanding of database management, specifically with SQL Server 2019; this includes experience with backups, indexing, integrity checks, installation and configuration, managing ports and protocols, developing maintenance plans, and adept troubleshooting

• Proficient in data modeling and schema, with the ability to interpret and navigate Entity Relationship Diagrams (ERDs), indicating a comprehensive grasp of database architecture and operations

• Proven ability to configure CyberArk for secure integration with a variety of systems and devices, including networks, iDRAC interfaces, applications, cloud services, storage solutions, servers, and appliances, ensuring a secure and efficient privileged access ecosystem across the IT landscape

Benefits offered to vary by the contract. Depending on your temporary assignment, benefits may include direct deposit, free career counseling services, 401(k), select paid holidays, short-term disability insurance, skills training, employee referral bonus, affordable medical coverage plan, and DailyPay (in some locations). For a full description of benefits available to you, be sure to talk with your recruiter.

VEVRAA Federal Contractor / Request Priority Protected Veteran Referrals / Equal Opportunity Employer / Veterans / Disabled

To read our Candidate Privacy Information Statement, which explains how we will use your information, please visit

The Company will consider qualified applicants with arrest and conviction records in accordance with federal, state, and local laws and/or security clearance requirements, including, as applicable:

• The California Fair Chance Act

• Los Angeles City Fair Chance Ordinance

• Los Angeles County Fair Chance Ordinance for Employers

• San Francisco Fair Chance Ordinance