CyberArk Engineer-L2

Requirements:

Role: CYBERARK ENGINEER

Location: Mumbai & Chennai

Qualification: Any Graduate

Experience: 2-5 YEARS

Working days: Rotational Shift

Key Responsibilities:

Daily Operations & Monitoring

• Monitor the CyberArk Vault, PVWA, CPM, PSM, PSMP and PTA components and ensure system health.
• Review password rotation jobs, platform tasks, and CPM activity status.
• Analyze logs and alerts to identify potential issues and security risks.

Incident & Problem Management

• Provide L2 support for CyberArk-related incidents raised through ticketing systems.
• Troubleshoot issues involving password rotation failures, CPM errors, PSM access problems, platform connectivity.
• Hands on experience on DR drill.
• Perform root cause analysis for recurring issues and implement corrective actions.
• Escalate unresolved or critical issues to L3 or vendor support.

Privileged Account Lifecycle Management

• Onboard privileged accounts across Windows, UNIX, databases, network devices, and applications.
• Configure safes, access control policies, platform settings, and rotation schedules.
• Ensure timely password changes, reconciliations, and compliance with organizational security policies.

Access Management & User Support

• Manage user access provisioning/de-provisioning for CyberArk users, groups, and safes.
• Support end-users for credential checkout, PSM session access, and workflow approvals.
• Conduct periodic access reviews and ensure least-privilege compliance.
• Perform regular health checks and cleanup activities across CyberArk components. Monitor storage, logs, backup status, and session recording utilization.
• Ensure CyberArk configuration aligns with security and regulatory standards.

Integration & Enhancement Support

• Support integration of new applications, systems, and domains with CyberArk.
• Configure and troubleshoot CPM/PSM plugins and platform-specific settings
• Collaborate with IAM, DevOps, and application teams for automation/API use cases.

Security Monitoring & Incident Response

• Review PTA alerts, PSM session logs, and privileged activity anomalies.
• Assist SOC and IR teams during security investigations involving privileged accounts.
• Report suspicious behavior and ensure timely resolution.

Documentation & Knowledge Management

• Maintain up-to-date SOPs, runbooks, architectural diagrams, and operational guides.
• Prepare troubleshooting documentation for repeated issues.
• Provide knowledge transfer and mentoring for L1 teams.

Required Skills & Qualifications

• Hands-on experience with CyberArk components (Vault, PVWA, CPM, PSM, PTA).
• Hands on experience on DR drill.
• Strong understanding of PAM concepts and privileged account security.
• Experience troubleshooting CPM/PSM issues and account onboarding.
• Knowledge of Windows, Linux, network devices, and database authentication.
• Familiarity with ticketing tools (ServiceNow, JIRA, etc.).
• Basic understanding of scripting/automation (PowerShell, Python added advantage).
• Handon experience on Cp or CCP