CyberArk PAM Engineer | Azure & AWS | Contract
We're looking for a CyberArk PAM Engineer with strong Secure Cloud Access (SCA) and Secure Infrastructure Access (SIA) experience to deliver secure, scalable privileged access across enterprise cloud environments.
This role will be working in a hybrid pattern - with up to 2 days per week required on-site in London.
This role will be operating inside IR35, with a daily rate.
What you’ll be doing
- Designing and delivering CyberArk SCA & SIA solutions in Azure & AWS
- Enabling secure access to:
- Cloud consoles & CLI (Azure / AWS)
- RDP & SSH access to cloud-hosted VMs
- Implementing ephemeral access models and strong audit controls
- Defining access policies, onboarding patterns, and automation workflows
- Supporting Terraform-led delivery alongside PAM engineering teams
- Integrating with ServiceNow for approvals, governance, and audit
- Driving credential lifecycle management, including password rotation (SRS)
Requirements
- Proven hands‑on experience with CyberArk SCA & SIA
- Strong background in Azure and/or AWS environments
- Experience with privileged access models (JIT / ZSP)
- Experience with credential lifecycle & password rotation
- Experience with approval‑based access workflows
Nice to have
- ServiceNow integrations
- Scripting / automation (PowerShell, Python, APIs)
- Database access controls (MSSQL, Oracle, PostgreSQL)
- Experience in regulated / audit-heavy environments
