CBSbutler Holdings Limited trading as CBSbutler
CyberArk Architect SME +SC cleared role - current active clearance is essential +Hybrid working +6 months + We are seeking an experienced Senior CyberArk Architect / SME to lead the design, integration, and optimisation of CyberArk Privileged Access Management (PAM) services across a complex enterprise environment. This role will play a pivotal part in shaping the security posture of the organisation by delivering robust, scalable, and secure PAM solutions and ensuring seamless integration with core business systems. Role Overview As the CyberArk Architect SME, you will drive the end-to-end architecture and implementation of CyberArk components-including Vault, CPM, PVWA, and PSM -while ensuring alignment with security frameworks, corporate standards, and operational requirements. You will collaborate closely with technical teams, stakeholders, and CyberArk vendors to deliver a highly secure and efficient privileged access ecosystem. Key Responsibilities Define, design, and develop CyberArk service architecture aligned to enterprise security frameworks. Implement integrations between CyberArk PAM solutions and enterprise applications, cloud platforms, and infrastructure services. Lead the optimisation of CyberArk technologies within existing IT landscapes. Establish governance models, operating procedures, and best practices for CyberArk services. Provide technical leadership and architectural oversight for CyberArk implementation programmes. Support risk assessments, audits, and compliance initiatives. Develop APIs, scripts, and custom connectors to integrate CyberArk with systems such as LDAP, Active Directory, SIEM, ITSM, and IAM platforms. Engage with stakeholders to gather requirements, deliver integration strategies, and drive continuous service enhancements. Troubleshoot and resolve integration challenges in collaboration with internal teams and CyberArk support. Produce documentation, technical designs, and integration guidelines for internal and client use. Deliver training and guidance to client teams and junior engineers. Stay abreast of emerging PAM technologies, standards, and trends. Ensure compliance with corporate security policies and external audit requirements. Maintain valid SC Clearance and adhere to all relevant security protocols. Essential Skills & Experience Proven experience architecting and delivering CyberArk PAM integrations in large, complex enterprise environments. Strong understanding of authentication protocols, APIs, and integration patterns (REST, SOAP, etc.). Proficiency in PowerShell, Python , and automation/scripting for integration tasks. Experience integrating with enterprise IAM solutions, directory services (LDAP/Active Directory), and cloud platforms (e.g., Azure). Strong diagnostic and problem-solving skills in relation to PAM integration issues. Excellent communication and stakeholder engagement skills, with the ability to translate complex technical concepts clearly. Experience with other PAM solutions such as Delinea (Centrify) or BeyondTrust . Proven background in client-facing consulting roles, collaboration, and technical presentations. Desirable Skills CyberArk certifications (Defender, Sentry, Guardian). Experience delivering CyberArk integrations in AWS, Azure, or GCP environments. Additional scripting/automation expertise (PowerShell, Python). Pre-sales experience (RFP responses, proposal support).
CyberArk Architect SME +SC cleared role - current active clearance is essential +Hybrid working +6 months + We are seeking an experienced Senior CyberArk Architect / SME to lead the design, integration, and optimisation of CyberArk Privileged Access Management (PAM) services across a complex enterprise environment. This role will play a pivotal part in shaping the security posture of the organisation by delivering robust, scalable, and secure PAM solutions and ensuring seamless integration with core business systems. Role Overview As the CyberArk Architect SME, you will drive the end-to-end architecture and implementation of CyberArk components-including Vault, CPM, PVWA, and PSM -while ensuring alignment with security frameworks, corporate standards, and operational requirements. You will collaborate closely with technical teams, stakeholders, and CyberArk vendors to deliver a highly secure and efficient privileged access ecosystem. Key Responsibilities Define, design, and develop CyberArk service architecture aligned to enterprise security frameworks. Implement integrations between CyberArk PAM solutions and enterprise applications, cloud platforms, and infrastructure services. Lead the optimisation of CyberArk technologies within existing IT landscapes. Establish governance models, operating procedures, and best practices for CyberArk services. Provide technical leadership and architectural oversight for CyberArk implementation programmes. Support risk assessments, audits, and compliance initiatives. Develop APIs, scripts, and custom connectors to integrate CyberArk with systems such as LDAP, Active Directory, SIEM, ITSM, and IAM platforms. Engage with stakeholders to gather requirements, deliver integration strategies, and drive continuous service enhancements. Troubleshoot and resolve integration challenges in collaboration with internal teams and CyberArk support. Produce documentation, technical designs, and integration guidelines for internal and client use. Deliver training and guidance to client teams and junior engineers. Stay abreast of emerging PAM technologies, standards, and trends. Ensure compliance with corporate security policies and external audit requirements. Maintain valid SC Clearance and adhere to all relevant security protocols. Essential Skills & Experience Proven experience architecting and delivering CyberArk PAM integrations in large, complex enterprise environments. Strong understanding of authentication protocols, APIs, and integration patterns (REST, SOAP, etc.). Proficiency in PowerShell, Python , and automation/scripting for integration tasks. Experience integrating with enterprise IAM solutions, directory services (LDAP/Active Directory), and cloud platforms (e.g., Azure). Strong diagnostic and problem-solving skills in relation to PAM integration issues. Excellent communication and stakeholder engagement skills, with the ability to translate complex technical concepts clearly. Experience with other PAM solutions such as Delinea (Centrify) or BeyondTrust . Proven background in client-facing consulting roles, collaboration, and technical presentations. Desirable Skills CyberArk certifications (Defender, Sentry, Guardian). Experience delivering CyberArk integrations in AWS, Azure, or GCP environments. Additional scripting/automation expertise (PowerShell, Python). Pre-sales experience (RFP responses, proposal support).
CBSbutler Holdings Limited trading as CBSbutler
Active Directory SME +6 months + +Fully remote working +SC cleared role + 575 - 625 a day Inside IR35 Skills: +AD design +GPO +AZure AD As the Active Directory SME, you will take ownership of the design, architecture, and operational excellence of Microsoft Active Directory services. You will act as the technical authority for AD-related activities, ensuring the environment remains secure, scalable, compliant, and aligned to organisational strategy. This role includes both hands-on engineering and strategic project leadership. Key Responsibilities Core Technical Activities Design & Architecture Develop and maintain AD architecture for scalability, security, and high performance. Plan and implement domain and forest designs, trust relationships, and OU structures. Administration & Operations Manage domain controllers, replication, DNS, and DHCP integration. Create, maintain, and troubleshoot Group Policy Objects (GPOs). Monitor AD health, diagnose replication issues, and resolve authentication failures. Security & Compliance Implement enterprise AD security best practices (e.g., tiered admin model, secure LDAP). Perform audits of accounts, groups, and permissions. Support SOX, GDPR, and other compliance requirements through logging and access control. Identity & Access Management Manage full user lifecycle: provisioning, deprovisioning, and RBAC. Integrate AD with IAM and cloud platforms (Azure AD, Okta, etc.). Support SSO and federation (ADFS, SAML, OAuth). Migrations & Upgrades Lead AD migrations, domain/forest consolidations, and Windows Server upgrades. Plan schema extensions and ensure application compatibility. Disaster Recovery & Continuity Develop, document, and test AD backup and recovery processes. Maintain high availability and failover strategies for critical AD components. Automation & Scripting Use PowerShell to automate tasks, generate reports, and streamline operations. Build scripts for bulk user management, GPO deployment, and auditing. Collaboration & Support Partner with infrastructure, security, and application teams to deliver integrated services. Provide SME-level support for escalated incidents and complex service requests. Experience & Skills Required The ideal contractor will bring 5+ years of hands-on experience in a similar AD-focused role, with expertise in: Active Directory Architecture & Replication GPO Design, Deployment & Troubleshooting DNS/DHCP integration with AD PowerShell scripting for automation and reporting ADFS configuration and federation support Azure AD - hybrid identity & sync (AAD Connect) Kerberos and NTLM authentication LDAP / LDAPS Active Directory Certificate Services (AD CS) It is essential for this role that you hold active SC clear ance. If you'd like to discuss this Active Directory SME role in more detail, please send your updated CV to (url removed) and I will get in touch.
Active Directory SME +6 months + +Fully remote working +SC cleared role + 575 - 625 a day Inside IR35 Skills: +AD design +GPO +AZure AD As the Active Directory SME, you will take ownership of the design, architecture, and operational excellence of Microsoft Active Directory services. You will act as the technical authority for AD-related activities, ensuring the environment remains secure, scalable, compliant, and aligned to organisational strategy. This role includes both hands-on engineering and strategic project leadership. Key Responsibilities Core Technical Activities Design & Architecture Develop and maintain AD architecture for scalability, security, and high performance. Plan and implement domain and forest designs, trust relationships, and OU structures. Administration & Operations Manage domain controllers, replication, DNS, and DHCP integration. Create, maintain, and troubleshoot Group Policy Objects (GPOs). Monitor AD health, diagnose replication issues, and resolve authentication failures. Security & Compliance Implement enterprise AD security best practices (e.g., tiered admin model, secure LDAP). Perform audits of accounts, groups, and permissions. Support SOX, GDPR, and other compliance requirements through logging and access control. Identity & Access Management Manage full user lifecycle: provisioning, deprovisioning, and RBAC. Integrate AD with IAM and cloud platforms (Azure AD, Okta, etc.). Support SSO and federation (ADFS, SAML, OAuth). Migrations & Upgrades Lead AD migrations, domain/forest consolidations, and Windows Server upgrades. Plan schema extensions and ensure application compatibility. Disaster Recovery & Continuity Develop, document, and test AD backup and recovery processes. Maintain high availability and failover strategies for critical AD components. Automation & Scripting Use PowerShell to automate tasks, generate reports, and streamline operations. Build scripts for bulk user management, GPO deployment, and auditing. Collaboration & Support Partner with infrastructure, security, and application teams to deliver integrated services. Provide SME-level support for escalated incidents and complex service requests. Experience & Skills Required The ideal contractor will bring 5+ years of hands-on experience in a similar AD-focused role, with expertise in: Active Directory Architecture & Replication GPO Design, Deployment & Troubleshooting DNS/DHCP integration with AD PowerShell scripting for automation and reporting ADFS configuration and federation support Azure AD - hybrid identity & sync (AAD Connect) Kerberos and NTLM authentication LDAP / LDAPS Active Directory Certificate Services (AD CS) It is essential for this role that you hold active SC clear ance. If you'd like to discuss this Active Directory SME role in more detail, please send your updated CV to (url removed) and I will get in touch.
