CyberArk PAM Architect

6‑Month Contract | London (Hybrid, 2 days onsite)

We’re looking for an experienced CyberArk PAM Architect to lead the architecture and delivery of a major Privileged Access Management transformation within a wider IAM and IT Controls Remediation programme. You’ll work across CyberArk CorePAS, Saviynt IGA, and integrated enterprise platforms including Workday, ServiceNow, AD/Entra ID, and core infrastructure.

What you’ll do

• Own the end‑to‑end CyberArk architecture, covering Vault, PSM, CPM, EPM, JIT, and least‑privilege models
• Define privileged account onboarding strategy, credential rotation standards, session monitoring, and operational models
• Design and implement integrations across AD/Entra ID, Windows/Linux/UNIX, databases, network devices, cloud platforms, ServiceNow, and SIEM/SOAR
• Ensure alignment to Zero Trust, NIST, CIS, SOX/ISO27001 and enforce least‑privilege and JIT principles
• Provide technical leadership, validating configurations, hardening, onboarding plans, and reusable design patterns

What you’ll bring

• 3+ years as a CyberArk Architect with hands‑on experience across Vault, PSM/PSMP, CPM, PVWA
• Strong expertise in privileged account classification, credential rotation, session monitoring, and JIT models
• Proven onboarding experience across servers, databases, network devices, and cloud (AWS/Azure)
• Experience integrating CyberArk with ServiceNow, SIEM, SSO, and directories
• CyberArk certifications and regulated‑industry experience are strong advantages

Contract Details

Length: 6 months

Location: London (2 days per week onsite)

Start: ASAP