Security Services Architect

Company Description
About CyberArk
:

CyberArk (NASDAQ: CYBR), is the global leader in Identity Security. Centered on privileged access management, CyberArk provides the most comprehensive security offering for any identity – human or machine – across business applications, distributed workforces, hybrid cloud workloads and throughout the DevOps lifecycle. The world's leading organizations trust CyberArk to help secure their most critical assets. To learn more about CyberArk, visit our CyberArk blogs or follow us on X, LinkedIn or Facebook.

Job Description
As a Security Services Architect, you will play a pivotal role in designing, planning, and implementing CyberArk solutions for our customers. You will establish best practices and new approaches to adapt to the ever-changing security landscape. Security Services Architects must coordinate closely with implementation services, sales teams, and product management to ensure the solutions they architect meet customer needs and are executed according to the plan. You will also own, manage, and lead key security initiatives, ensuring our products and systems are robust and resilient against threats.

• Design & Architecture – Define and document secure solution architectures tailored to customer needs.
• Solution Delivery – Lead and deliver complex enterprise deployments of CyberArk solutions throughout the full lifecycle.
• Advisory & Expertise – Provide strategic guidance on trends and best practices in identity security and privileged access management.
• Business Alignment – Assess customer priorities and advise on solutions that balance security, business impact, and operational efficiency.
• Security Standards – Establish and promote standard practices for deploying CyberArk solutions and securing identities.
• Technical Leadership – Act as a trusted expert for customers and internal teams, providing mentorship and knowledge transfer.
• Stakeholder Engagement – Build strong relationships with customers and act as the key conduit between them and CyberArk's internal teams.
• Governance & Assurance – Participate in design reviews, risk assessments, and incident response to ensure solutions meet security standards.
• Enablement & Training – Deliver training sessions, develop secure deployment guidelines, and support internal/external security awareness.
• Continuous Innovation – Stay current with emerging threats, technologies, and industry trends; contribute to CyberArk's security thought leadership.
• Technical Account Manager – Act as the technical account manager role for designated customers. Coordinate deployment activities for the customers and provide consulting support as needed. Provide technical inputs to other collaborating functions.

Qualifications

• Minimum 12+ years of overall experience in cybersecurity, including enterprise solution architecture and risk management. Of this, minimum 5–7 years of experience in Identity Credential and Access Management (ICAM), with at least 3 years in CyberArk PAM Self-Hosted (on-Prem) architecture and implementation.
• Strong expertise in identity security, privileged access management, and large-scale IT environments.
• Hands-on experience in designing and implementing CyberArk On-Prem PAM, in both on-premises and cloud infrastructure, at least after v11.x. Good to have hands-on experience with CyberArk PAM-SaaS or other CyberArk SaaS solutions such as SCA, SWS, Identity, EPM etc.
• Extensive hands-on experience in at least two of these cloud technologies: AWS, Azure, and GCP.
• Proficiency in technologies such as Active Directory, LDAP, SAML, OAuth, Python, PowerShell, with extensive hands-on experience in at least two of these technologies.
• Certifications such as CISSP, CISM, or equivalent (additional security certifications advantageous) and CDE-PAM certifications are beneficial.
• Deep understanding of security architecture, vulnerability management, and regulatory frameworks (e.g., OWASP, NIST, SANS).
• Strong communication and presentation skills, with a proven record of engaging both technical and executive audiences.
• Exposure to handling Indian customers esp. for more than 4-5 years and technical refresh/upgrade cycles.