PARTNER PROGRAM

&
CERTIFICATIONS – Q2 FY 21
ACESSO/ACCESO AO/AL SISTEMA
• PARA QUEM AINDA NÃO TEM ACESSO AO SISTEMA DE PARCEIROS

• PARA AQUELLOS QUE NO TIENEN ACCESO AL SISTEMA DE SOCIOS

• https://cyberark-customers.force.com/partner/s/login/
• Clique em SigUp as a Partner

• PARA QUEM ESQUECEU USUÁRIO OU SENHA

• PARA QUIEN OLVIDÓ USUARIO O CONTRASEÑA

• https://cyberark-customers.force.com/partner/s/login/
• Clique em Forgot Your Password
Qualquer problema relativo ao acesso sistema, por favo escreva para:
User.access@cyberark.com
Cualquier problema relacionado con el acceso al sistema, escriba a:
CYBERARK PARTNER ENABLEMENT
Partner Certification Levels
Certified Sales
Professional
The Certified Sales Professional (CSP)
is designed to equip channel sales
professionals with a foundational
understanding of the privileged access
security market, targeting customers,
and the value of the CyberArk Identity
Security solution.
Certified Pre-
Sales Engineer
The Certified Pre-Sales Engineer (CPE)
is designed to equip channel pre-sales
professionals and engineers with the
ability to present and demonstrate the
CyberArk Identity Security solutions.
The curriculum also introduces the
tools, resources and teams available to
help partners successfully position and
sell our solution.
Certified Delivery
Engineer
The Certified Delivery Engineer (CDE)
certification course combines content
from the CyberArk Administration &
Deployment Courses and hands-on
experience with the solution. The
course increases competency for
implementing and supporting CyberArk
projects.
3
Para CSP y CPE, los requisitos son para cada vertical al menos Ejemplo: el socio certificado debe tener al menos 2
CYBERARK PARTNER ENABLEMENT
Partner Certification Levels

CSP CPE CDE

Tier Region Privilege, Privilege, Privilege,
Access or DevSecOps Access or DevSecOps Access or DevSecOps

Authorized LATAM Suggested Suggested Suggested

Certified LATAM 2 2 1

Advanced LATAM 3 3 2

For CSP and CPE, the requirements are for each verticial at least
Example: Certified Partner has to have at least 2 CPE certifications for PAM and/or ACCESS and/or DEVSECOPS

For CDE, the requirements are for total CDE certifications, regardless of vertical.

Para CSP y CPE, los requisitos son para cada vertical al menos
Ejemplo: el socio Certified debe tener al menos 2 certificaciones CPE para PAM y / o ACCESS y / o DEVSECOPS
Para CDE, los requisitos son para certificaciones CDE totales, independientemente de la vertical.

4
5

PARTNER CERTIFICATIONS
SALES PRE-SALES CONSULTING
CSP CPE CDE

Privilege Access
Management

Endpoint Privilege
Manager

Cloud Entitlements
Manager

Access
Soon

DevSecOps
Secrets Management Soon
6

PARTNER CERTIFICATIONS SALES

CSP
Make sure you enroll for course and exam
https://training.cyberark.com/course/csp-cyberark-company-overview
Privilege Access
Management https://training.cyberark.com/course/csp-for-privilege-access-management-pam
https://training.cyberark.com/exam/csp-for-privilege-access-management-pam-exam

Endpoint Privilege
Manager https://training.cyberark.com/course/csp-for-endpoint-privilege-manager-epm
https://training.cyberark.com/exam/csp-for-endpoint-privilege-manager-epm-exam

Cloud Entitlements
https://training.cyberark.com/course/csp-for-cloud-entitlements-manager-cem
Manager
https://training.cyberark.com/exam/csp-for-cloud-entitlements-manager-cem-exam

Access https://training.cyberark.com/course/csp-for-access
https://training.cyberark.com/exam/csp-for-access-exam

DevSecOps
Secrets Management https://training.cyberark.com/course/csp-for-secrets-management
https://training.cyberark.com/exam/csp-for-devsecops-secrets-management-exam
7

PARTNER CERTIFICATIONS PRE-SALES

CPE
Make sure you enroll for course and exam

Privilege Access https://training.cyberark.com/course/cpe-for-privilege-access-management-pam

Management https://training.cyberark.com/exam/cpe-for-privilege-access-management-pam-exam

Endpoint Privilege https://training.cyberark.com/course/cpe-for-endpoint-privilege-manager-epm

Manager

https://training.cyberark.com/exam/cpe-for-endpoint-privilege-manager-epm-exam
Cloud Entitlements https://training.cyberark.com/course/cpe-for-access
Manager https://training.cyberark.com/exam/cpe-for-cloud-entitlements-manager-cem-exam

Access https://training.cyberark.com/course/cpe-for-access
https://training.cyberark.com/exam/cpe-for-access-exam
https://training.cyberark.com/course/introduction-to-cyberark-identity-administration-self-paced-partners

DevSecOps https://training.cyberark.com/course/cpe-for-devsecops-secrets-management
Secrets Management
https://training.cyberark.com/exam/cpe-for-devsecops-secrets-management-exam
✓ Defender Test

✓ Sentry Test

✓ CDE Lab Challenge

✓ Before the tests:

✓ Register for CDE (HERE) – https://training.cyberark.com/exam/cyberark-certified-delivery-engineer-

--cde-certification

✓ Introdution to CyberArk Privileged Access Security (HERE)

✓ Teste Trustee (HERE) - https://training.cyberark.com/exam/level-1-Trustee
✓ CyberArk PAS Administration for Partners - Self-Paced (HERE)
- https://training.cyberark.com/course/cyberark-pas-administration---self-paced-for-partners
✓ CyberArk PAS Install and Configure - Self-Paced (HERE) -
https://training.cyberark.com/course/cyberark-pas-install-and-configure---self-paced
Before the test:
Defender Preparation (HERE) https://training.cyberark.com/exam/defender-preparation-quiz
Sentry Preparation (HERE) - https://training.cyberark.com/exam/sentry-preparation
Please also check for local courses in your language

Schedule your test: - https://home.pearsonvue.com/cyberark/onvue

Each test costs USD 200 (CAU201 – Defender & CAU301 – Sentry)
You can do both in the same day for USD 200(CAU302 – Defender + Sentry)
Check on-line or local availability
➢ Direct Defender e Sentry certificatios to
CDE.Challenge@cyberark.com
➢ Reques CyberArk Technical Community access
users.access@cyberark.com
➢ Follow instrucionts and complete de lab challenge
Purpose
The purpose of the Partner CDE Challenge is to measure a candidate’s ability to install and configure
the Privileged Account Security (PAS) Core solution both functionally and securely per CyberArk Best
Practices when given a typical customer scenario.
General Instructions
The CDE Challenge requires that the candidate achieve a passing grade on the CyberArk Defender
and Sentry examinations prior to taking the CDE Challenge.
The CDE Candidate will have access to the lab for 1 week to complete the challenge and complete all
the objectives and tasks defined therein. The challenge is “open book”, meaning that all resources
are available to the candidate, including the following resources.
1. CyberArk University training courses. To ensure your success, it is highly recommended to attend
the Instructor led Privileged Access Security Install and Configuration course.
2. published documentation (https://docs.cyberark.com).
3. CyberArk Marketplace (https://cyberark-customers.force.com/mplace).
4. CyberArk Tech Community knowledge base (((https://cyberark-customers.force.com/)
.
All of the above can be referenced to complete the tasks.
The CDE Candidate should have access to CyberArk Technical Community. To get access, please
send an email to users.access@cyberark.com and request a “Read Only” account.
Under no circumstances should a CDE Candidate solicit another engineer for assistance. No one
other than the CDE Candidate themselves can access or configure the provided CyberArk CDE Lab.
All questions related to the CDE Challenge must be sent to CDE.Challenge@cyberark.com but no
technical assistance will be provided beyond what is included in this guide and the CDE Challenge
Lab Guide specific to the CDE Challenge lab.
Opening a CyberArk support case requesting assistance with the CDE Challenge may result in the
disqualification of the CDE Candidate.

Once the candidate has completed the challenge, the candidate must email the
CDE.Challenge@cyberark.com

Please allow 7 business days from your submission date to receive the results of the CDE Challenge.

Approximately 8 hours of effort is generally required to complete the CDE Challenge.

Retries Policy:
Candidates who fail will be provided up to 3 attempts to pass the challenge on a new environment.
a. 1st and 2nd attempts i. After the first failure, the CDE Candidate is eligible to start their 2nd attempt
immediately.
ii. After the second failure, the CDE Candidate is eligible to start a 3rd attempt no less than 30 days
from the 2nd recorded failure.

b. 3rd attempts iii. If a CDE Candidate fails 3 times they must wait 1 year from the last date of failure.

c. The CDE Candidate must be certain that they can complete the lab in the time allowed. Once the
CDE Challenge lab is provisioned, it counts as an attempt, it cannot be rescheduled.
Standards
The deployment should be completed per established guidelines set forth by CyberArk with respect to
installation and configuration of the PAS Core solution. In consideration of the virtual environment,
allowances will be made for the following:
• Availability of virtual machines
• Limitations on disk, CPU and memory in the virtual environment
.
CDE Challenge Scenario
In each scenario, “the customer” is asking for help to resolve issues and expand functionality in their
production environment. These requirements may include installing and configuring new CyberArk
Core Components, configuring a new authentication method or possibly 2 factor authentications. In
addition, “the customer” is requesting a Security Hardening review on the PAS Component Servers to
ensure they have been deployed securely and to CyberArk Best Practices.
Standards
The deployment should be completed per established guidelines set forth by CyberArk with respect to
installation and configuration of the PAS Core solution. In consideration of the virtual environment,
allowances will be made for the following:
• Availability of virtual machines
• Limitations on disk, CPU and memory in the virtual environment
.
CDE Challenge Scenario
In each scenario, “the customer” is asking for help to resolve issues and expand functionality in their
production environment. These requirements may include installing and configuring new CyberArk
Core Components, configuring a new authentication method or possibly 2 factor authentications. In
addition, “the customer” is requesting a Security Hardening review on the PAS Component Servers to
ensure they have been deployed securely and to CyberArk Best Practices.
Assignment Categories
The CDE Challenge will include assignments in the categories described below. A strong emphasis is
placed on CyberArk’s prescribed security configuration and hardening procedures and what the
installation automation scripts perform. Failure to properly diagnose and resolve security hardening
parameters will result in an automatic failure of the CDE Challenge.
• Security hardening parameters on CyberArk Components CPM/PVWA
• Disaster Recovery
• Authentication Methods
• LDAP Integration
• PSM Connection Components
• PAS Installation
• PAS Component configuration and optimization
Assignment Categories
The CDE Challenge will include assignments in the categories described below. A strong emphasis is
placed on CyberArk’s prescribed security configuration and hardening procedures and what the
installation automation scripts perform. Failure to properly diagnose and resolve security hardening
parameters will result in an automatic failure of the CDE Challenge.
• Security hardening parameters on CyberArk Components CPM/PVWA
• Disaster Recovery
• Authentication Methods
• LDAP Integration
• PSM Connection Components
• PAS Installation
• PAS Component configuration and optimization
Customer Environment
There are multiple CDE Challenge lab environments with different assignments or requests from the
customer. If a CDE candidate fails in an attempt at the CDE Challenge, they will be provisioned an
entirely different CDE Challenge on their next attempt.
Each CDE Challenge lab is considered a customer’s production environment and may include any or
all the following components, features or functions.

• Standalone or HA Vault.
• 1 or more CPM’s either in a workgroup, domain or standalone configuration.
• 1 or more PVWA / PSM servers either in a workgroup, domain, standalone or in a Load Balanced
configuration.
• 1 or more PSM for SSH servers in a standalone or load balanced configuration.
• 2 factor authentications.
• Knowledge of the implementation of secure protocols will be required.
OBRIGADO/GRACIAS
www.cyberark.com