Cyber Security Engineer

Key Responsibilities

• Deploy, configure, and maintain CyberArk components, including Vault, CPM, PSM, PSMP, HTML5GW, CP, CCP, EVD and PVWA.
• Manage the onboarding and lifecycle of privileged accounts across various systems and environments.
• Implement CyberArk policies and security best practices to align with compliance and regulatory standards.
• Develop and maintain automation scripts and integrations with CyberArk using REST APIs, PowerShell, and other tools.
• Monitor and troubleshoot CyberArk infrastructure and user issues, providing escalation support as needed.
• Troubleshoot and remediate CyberArk Central Policy Manager (CPM) failures, including credential rotation errors, connectivity issues, and policy misconfigurations.
• Analyse CPM logs and error codes to identify root causes and implement durable solutions in collaboration with infrastructure and application teams.
• Perform health checks and tuning of CPM components to ensure stability and optimal performance.
• Develop and maintain custom CPM and PSM connectors for target platforms not natively supported by CyberArk.
• Work with application owners to gather requirements for new connectors, create integration documentation, and test connector functionality in pre-production environments.
• Leverage scripting (e.g., PowerShell, Python) to enhance connector behavior and automate remediation tasks.
• Contribute to the connector certification process and maintain version control for custom components.
• Assist with audits, documentation, and reporting of privileged access activities.
• Work with IT, DevOps, and Security teams to integrate PAM solutions into existing workflows.
• Stay up to date with emerging threats, PAM trends, and CyberArk product updates.

Required Qualifications

• CyberArk Certified Delivery Engineer (CDE) certification (must-have).
• 3+ years of experience implementing and supporting CyberArk solutions in enterprise environments.
• Proficiency with CyberArk components and architecture.
• Strong scripting skills (PowerShell, Python, etc.) and experience using CyberArk APIs.
• Understanding of identity and access management (IAM) concepts, Zero Trust, and least privilege.
• Solid knowledge of Windows/Linux systems, Active Directory, and network security fundamentals.

Preferred Qualifications

• Experience or certification with Sentry.
• CyberArk Defender or Guardian certification(s).
• Familiarity with cloud PAM implementations (AWS, Azure, GCP).
• Experience with SIEM tools and security monitoring.
• Bachelor's degree in computer science, Information Security, or related field.

Interested candidates may apply through the application system. We regret to inform only Shortlisted candidates will be notified.

PERSOL Singapore Pte Ltd
• RCB No E
• EA License No. 01C4394 
• EA Registration No. R Derrick Tiew Yong Han)

By sending us your personal data and curriculum vitae (CV), you are deemed to consent to PERSOL Singapore Pte Ltd and its affiliates to collect, use and disclose your personal data for the purposes set out in the Privacy Policy available at You acknowledge that you have read, understood, and agree with the Privacy Policy.

This is in partnership with the Employment and Employability Institute Pte Ltd ("e2i").

e2i is the empowering network for workers and employers seeking employment and employability solutions. e2i serves as a bridge between workers and employers, connecting with workers to offer job security through job-matching, career guidance and skills upgrading services, and partnering employers to address their manpower needs through recruitment, training, and job redesign solutions. e2i is a tripartite initiative of the National Trades Union Congress set up to support nation-wide manpower and skills upgrading initiatives.