Job Title:  T&T | Cyber - DPT | Consultant | CyberArk

The team

Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks. Lear more about  Cybersecurity

Your work profile

• As a Consultant in our Cyber: Identity Team, you’ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations
• Design & Discovery: Lead technical discovery sessions to define PAM use cases, Safes architecture, and naming conventions.
• End-to-End Implementation: Perform greenfield installations and upgrades of CyberArk PAS (Vault, CPM, PSM, PVWA) in complex multi-forest environments.
• Strategic Onboarding: Architect and execute the onboarding of critical infrastructure, including Domain Controllers, Root accounts, and high-value Business Applications.
• Custom Development: Design and build custom CPM plugins and PSM connectors for proprietary or legacy applications where out-of-the-box solutions do not exist.
• DevSecOps Integration: Implement AAM (Application Access Manager) to secure secrets in CI/CD pipelines and automate credential fetching for robotic process automation (RPA).
• Stakeholder Management: Provide expert recommendations to client CISOs and IT Directors on PAM roadmap, risk mitigation, and compliance (SOX, PCI-DSS, HIPAA).

Key skills required: 

• 2+ years of experience working in PAM Domain (CyberArk, BeyondTrust, Delinea)
• B.E / B.Tech (Tier 1/2) in Computer Science, Information Technology or related fields 
• CyberArk Stack: Mastery of EPV, PVWA, CPM, PSM, and PTA. Hands-on experience with Distributed Vaults or CVM (Cluster Vault Manager) is a plus.
• Automation: Advanced proficiency in PowerShell and CyberArk REST APIs for bulk automation and system integration.
• Identity Foundations: Expert knowledge of Active Directory (GPOs, OUs, Kerberos) and Linux/Unix security.
• Cloud Presence: Experience deploying CyberArk on AWS (AMIs) or Azure using Infrastructure as Code (Terraform/CloudFormation).
• Networking: Deep understanding of TCP/IP, load balancing (F5/Citrix), and certificate management (SSL/TLS).