Sr. IAM Architect (CyberArk)

Company: System One
Location: Topeka
Posted on: May 18, 2025

Job Description:

Job Title: Sr. IAM Architect (CyberArk)

In order to make an application, simply read through the following job description and make sure to attach relevant documents.
Location: Topeka, KS - Remote

Type: Contract To Hire
Contractor Work Model: Remote

Job Overview:
The CyberArk SME will be responsible for leading the design, implementation, and optimization of SailPoint Identity Governance and Administration (IGA) solutions. This role requires in-depth technical expertise in CyberArk. The ideal candidate will be responsible for architecting end-to-end identity management solutions, working closely with cross-functional teams, and ensuring the overall success.

This position will have additional responsibilities around designing, implementing and managing CyberArk Privileged Access Management solutions to protect our organization's critical systems, applications, and infrastructure. Familiarity with the CyberArk SaaS platform or willingness to learn and become a SME on the tool will be required.
Key Responsibilities: Solution Architecture: Design and implement CyberArk solutions that meet organizational requirements, including integration with various applications, databases, and systems. Lead the technical design and architecture for complex CyberArk deployments..
Stakeholder Engagement: Collaborate with business and IT stakeholders to understand business requirements and translate them into CyberArk solutions that align with identity governance goals.
Identity Lifecycle Management: Lead the development and maintenance of identity lifecycle processes, including onboarding, offboarding, access certification, role-based access control (RBAC), and access reviews.
Integration Expertise: Develop and implement integrations with Active Directory, LDAP, cloud applications (e.g., Office 365, Salesforce, Oracle), and other enterprise systems.
Security & Compliance: Ensure that CyberArk solutions meet security, compliance, and auditing requirements. Maintain up-to-date knowledge of industry standards and regulatory requirements.
Automation & Optimization: Identify opportunities for process automation and operational efficiency improvements within the CyberArk platform. Lead efforts to optimize the identity management processes and workflows.
Mentorship & Leadership: Provide mentorship and guidance to junior team members and help drive best practices for SailPoint development and implementation.
Troubleshooting & Support: Troubleshoot complex issues related to CyberArk and identity management systems. Provide ongoing support and performance tuning for deployed solutions.
Documentation: Maintain thorough documentation for configurations, workflows, integrations, and policies. Ensure that the architecture and design are well-documented for knowledge sharing and support purposes.
Continuous Improvement: Stay up-to-date with the latest CyberArk features, industry trends, and best practices, and bring innovative solutions to the table.


Required Skills & Qualifications: Experience: 7+ years of experience in identity and access management (IAM) with at least 5 years of hands-on experience with CyberArk.
Technical Expertise: Deep knowledge of CyberArk's architecture, provisioning, workflows, policy management, and connectors. Familiarity with integration concepts (APIs, web services, etc.) and scripting languages (e.g., BeanShell, Java, JavaScript).
Enterprise Integration: Strong experience with integrating CyberArk solutions into enterprise environments, including systems like Active Directory, LDAP, Office 365, cloud applications, and more.
IAM Best Practices: Knowledge of IAM frameworks, security models, and access control principles (e.g., RBAC, ABAC, least privilege, segregation of duties).
Security and Compliance: Understanding of regulatory and compliance requirements related to IAM (SOX, HIPAA, GDPR, etc.).
Tools and Technologies: Familiarity with tools like SailPoint IdentityNow/IdentityIQ, ServiceNow, Okta, Microsoft Azure AD, and related IAM tools.
Project Management: Ability to manage multiple tasks, prioritize, and deliver on-time in a fast-paced, dynamic environment. Experience with agile methodologies is a plus.
Problem Solving: Strong analytical and troubleshooting skills, with the ability to solve complex identity and access issues.
Communication Skills: Excellent verbal and written communication skills, with the ability to communicate technical concepts to both technical and non-technical stakeholders.
Certifications (Preferred): SailPoint Certified IdentityNow or IdentityIQ Consultant, CISSP, CISM, or other IAM-related certifications.


Education: Bachelor's degree in Computer Science, Information Technology, Engineering, or a related field. Master's degree or relevant certifications is a plus.


Additional Desired Skills: Experience with CyberArk- Privileged Access Security
Experience with cloud identity solutions (e.g., Azure AD, Okta, AWS IAM).
Familiarity with DevOps practices and CI/CD pipelines for IAM solutions.
Expertise in identity governance workflows, access reviews, and certification campaigns.
Experience with identity federation, single sign-on (SSO), and multi-factor authentication (MFA).




System One, and its subsidiaries including Joul--, ALTA IT Services, and Mountain Ltd., are leaders in delivering outsourced services and workforce solutions across North America. We help clients get work done more efficiently and economically, without compromising quality. System One not only serves as a valued partner for our clients, but we offer eligible employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan.

System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law.

#M-1
#LI-SG1

Ref: #275-Eng Kansas City

Keywords: System One, Topeka , Sr. IAM Architect (CyberArk), Professions , Topeka, Kansas