The Role
SysGroup is
hiring a Senior Cyber Security Engineer specialising in privileged access
management, with CyberArk as the core platform. This is the senior tooling and
identity specialist role in the Cyber Security team under our 2026 operating
model: you own the design, deployment and health of the security tooling estate
across our managed clients, with PAM as your deepest expertise.
Beyond
CyberArk, the role carries breadth across the modern security stack: hands-on
experience with Zscaler (ZIA/ZPA) and working capability across EDR, SIEM,
vulnerability management and the wider cyber product set we operate for
clients.
You will report
to the Cyber Operations Lead and work closely with the SOC engineers, the
Pre-sales Security Consultant and the Platform & Infrastructure teams.
Requirements
Key Responsibilities
CyberArk & privileged
access management
·Own CyberArk design, deployment
and operation across managed clients: vaulting, session management, secrets
management and privileged threat analytics.
·Design PAM onboarding
programmes for new clients: discovery, scoping, policy design and rollout.
·Integrate PAM with the wider
identity stack: Entra ID, conditional access, MFA and just-in-time access
patterns.
·Set privileged access standards
and evidence them for client audits (ISO 27001, Cyber Essentials Plus).
Security tooling &
engineering
·Deploy, configure and maintain
the security tooling estate: EDR, SIEM integrations, vulnerability scanning and
email security.
·Support Zscaler (ZIA/ZPA)
deployment and policy work alongside the zero trust leads.
·Own tooling health: version
currency, coverage gaps, tuning quality and integration reliability.
·Automate deployment and
operational tasks with scripts and APIs; contribute to the shared automation
library.
Service & quality
·Act as senior escalation for
identity and tooling incidents; support major incident response.
·Document designs, runbooks and
standards to a level the wider team can operate from.
·Contribute tooling and PAM
expertise to service reviews and solution scoping when needed.
·Adopt AI-assisted workflows for
diagnostics, configuration review and documentation.
Experience
·5+ years in security
engineering with 2+ years of hands-on CyberArk design and administration (PAM
Self-Hosted or Privilege Cloud).
·Experience deploying or
operating Zscaler (ZIA/ZPA) and at least two of: EDR platforms, SIEM,
vulnerability management, email security.
·Strong scripting capability
(PowerShell or Python) applied to security tooling automation and integration.
·MSP/MSSP or multi-client
environment experience preferred; client audit exposure an advantage.
Certifications
·Essential (or equivalent
hands-on experience): CyberArk Defender certification; CyberArk Sentry strongly
preferred.
·Desirable: CyberArk Guardian,
Zscaler professional-level certification (ZIA/ZPA), Microsoft SC-300, SC-200,
AZ-500, or EDR vendor certifications.
Benefits
Why Join Us?
Joining Sysgroup means becoming part of a
dynamic and innovative team that is dedicated to excellence. We offer a
supportive, and collaborative work environment, where your ideas and
contributions are valued. Here are some of the benefits of working with us:
Competitive Compensation
We offer a competitive salary package,
including performance-based incentives, to reward your hard work and
achievements.
-Private Healthcare
-Life insurance
-Healthcare cash plan
-Pension
Growth Opportunities
We believe in investing in our employees'
professional development. You will have
your own individual development learning paths with access to various training
material and ongoing career advancement opportunities.