PAM Security Architect

About DXC Technology

DXC Technology is a global professional services company that helps the world’s leading organisations run their mission‑critical systems while modernising IT, optimising data architectures and ensuring security and scalability across public, private and hybrid clouds. We work with customers across public sector, defence, financial services and critical national infrastructure.

We are now looking for an experienced CyberArk PAM & Secrets Management Architect to join our Cyber Security practice, playing a key role in shaping and delivering privileged access and secrets management capabilities across complex, regulated environments.

The Role

As a CyberArk PAM & Secrets Management Architect, you will own the end‑to‑end architecture and high‑level design of CyberArk PAM Self‑Hosted and CyberArk Conjur as strategic enterprise platforms. You will work closely with security, DevOps and infrastructure teams, acting as a trusted advisor to senior stakeholders while providing architectural governance, technical leadership and hands‑on guidance across multiple programmes.

This is a senior role with real influence over platform direction, investment decisions and security risk reduction.

Key Responsibilities

• Own the end‑to‑end architecture and high‑level design for CyberArk PAM Self‑Hosted and CyberArk Conjur, establishing them as strategic platforms for privileged access and secrets management.
• Define and maintain reference architectures, patterns and standards for onboarding infrastructure, applications, DevOps platforms and third parties into CyberArk.
• Design CyberArk PAM Self‑Hosted components (Vault, PVWA, PSM, CPM, PSMP, PTA, DR) with a focus on resilience, scalability, segregation of duties and regulatory compliance.
• Architect CyberArk Conjur and Credential Provider solutions to securely manage application, machine and DevOps secrets, including integration with CI/CD pipelines, containers, Kubernetes/OpenShift and cloud platforms.
• Collaborate with security, DevOps and infrastructure teams to design integrations with AD/LDAP, identity providers (SAML/OIDC), SIEM tools (e.g. Splunk), ITSM and ticketing systems.
• Lead CyberArk secrets management solution installation, configuration, testing and handover to Run & Maintain teams.
• Provide architectural leadership on privileged access risk reduction, including threat modelling, security control selection and alignment with organisational policies and standards.
• Act as a trusted advisor to senior stakeholders (CISO, security architecture, platform owners and programme leadership), translating complex PAM and secrets concepts into clear business outcomes.
• Govern and review detailed designs and implementations delivered by SMEs and partners to ensure adherence to architectural and security requirements.
• Contribute to roadmaps, business cases and investment planning for PAM and secrets management capabilities.
• Mentor and provide technical oversight to PAM and DevOps teams, promoting best practice, continuous improvement and knowledge sharing.

Required Skills & Experience

• Significant experience (typically 7+ years) in cybersecurity architecture, with deep expertise in Privileged Access Management within complex, regulated environments.
• Proven hands‑on architectural experience with CyberArk PAM Self‑Hosted, including most of: Vault, PVWA, PSM, CPM, PSMP, PTA and Disaster Recovery.
• Strong experience designing and integrating CyberArk Conjur and Credential Provider for application and DevOps secrets management.
• Demonstrable experience integrating CyberArk with Microsoft Active Directory/LDAP, identity providers (SAML/OIDC), SIEM, ITSM/ticketing tools and at least one MFA solution.
• Good understanding of DevOps and cloud‑native ecosystems, including Kubernetes, OpenShift, CI/CD pipelines, infrastructure‑as‑code and how to embed secret management into these environments.
• Solid awareness of security and audit standards (e.g. NCSC guidance, ISO 27001, NIST, FCA, government or financial services frameworks).
• Excellent stakeholder management and communication skills, with the ability to engage confidently at senior leadership level.
• Experience working in or alongside secure, classified or national security environments.
• Strong documentation skills (HLDs, LLDs, architectural patterns and design decisions).
• Proven track record of leading and delivering multiple CyberArk PAM and secrets management implementations.

Desirable Qualifications

• CyberArk certifications such as Sentry, CDE or Guardian (PAM Self‑Hosted focus).

Why Join DXC?

• Work on high‑impact, mission‑critical programmes across public and private sector clients
• Be part of a market‑leading cyber security practice
• Influence strategy and architecture, not just delivery
• Flexible working options and a strong focus on inclusion, wellbeing and career development