CyberArk SME in London

Robert Half Technology are assisting a market leading financial services organisation to recruit a CyberArk SME on a contract basis. Hybrid working - London based (1 day per week onsite). June 2026 start through to the end of 2026.

Role

• The CyberArk SME will plan, test, and implement major CyberArk platform releases and upgrades, including annual version upgrades (e.g. 14.x to 15.x).
• Plan, test, and implement monthly operating system patching for CyberArk Vault servers in line with internal patching schedules.
• Test and coordinate monthly patching activities across CyberArk underlying infrastructure with internal infrastructure and patching teams.
• Deploy CyberArk security patches to remediate critical vulnerabilities identified in CyberArk advisories.
• Maintain existing CyberArk integrations including SCIM integration with Saviynt and telemetry integration with Power BI.
• Support and maintain existing deployed CyberArk connectors and collaborate with permanent teams to deliver configuration changes and onboarding activities.
• Create up to 10 custom CPM and PSM connectors annually to support new platforms and applications.
• Drive the adoption and embeddedness of CyberArk controls across the organisation.
• Utilise CyberArk Discovery, PTA, Splunk dashboards, CrowdStrike, Saviynt and other repositories to identify privileged accounts not currently under CyberArk management.
• Produce monthly metrics and reporting covering privileged account coverage across CMDB assets, Active Directory, and LDAP environments.
• Drive BAU onboarding activities to close identified gaps across existing platform types.
• Create detailed technical documentation including HLDs, LLDs, Safe Design documents, Runbooks, Test Plans and BAU handover documentation.
• Deploy and integrate CyberArk CP/CCP platforms into pre-production and production environments.
• Install and configure CP agents on PoC and candidate servers.
• Define and deploy processes for end-to-end SSH key lifecycle management including rotation.
• Create and manage Safes, Platforms and application authentication configurations within CyberArk.
• Conduct discovery and assessment activities for application service accounts, SSH keys, certificates, and secrets across production and pre-production environments.
• Define remediation and treatment plans for secrets management including CP/CCP adoption, PKI, mTLS and SPIFFE approaches.
• Deliver monitoring, hypercare, prioritisation, and remediation planning activities for secrets onboarding initiatives.

Profile

• The CyberArk SME will have strong experience administering and engineering CyberArk PAM solutions within enterprise-scale environments.
• Expert-level knowledge of CyberArk components including Vault, CPM, PSM, CP, CCP, PTA and Discovery.
• Experience planning and delivering CyberArk upgrades, patching, and vulnerability remediation activities.
• Strong understanding of privileged access management, secrets management, SSH key management, and certificate-based authentication.
• Experience integrating CyberArk with enterprise tooling including Saviynt, Splunk, CrowdStrike, Power BI, Active Directory and LDAP.
• Proven experience creating custom CPM and PSM connectors.
• Strong knowledge of Linux and Windows server administration and infrastructure patching processes.
• Experience producing technical documentation including HLDs, LLDs, test plans and operational runbooks.
• Excellent stakeholder engagement and communication skills with the ability to collaborate across technical and business teams.
• CyberArk Sentry certification or above highly desirable.

Company

• Market leading financial services organisation with offices in London.
• Hybrid working - 1 day per week onsite.

Salary & Benefits

The salary range/rates of pay is dependent upon your experience, qualifications or training.