Black & Grey HR is recruiting for an established technology solutions and services provider in Doha, Qatar. Our client is seeking an experienced Information Security Officer to lead and manage the Identity and Access Management (IAM) program. You will be responsible for protecting company data and systems by implementing and maintaining secure access controls for all users and applications. Your work will be critical both during major events and in day-to-day operations, helping to manage risk, enforce policies, and respond to incidents.

Key Responsibilities

IAM Implementation & Management:

• Deploy and manage IAM tools for single sign-on (SSO), multi-factor authentication (MFA), and access federation (e.g., Azure Entra ID, SailPoint).
• Set up and oversee IAM systems for Google Cloud (GCP) and Microsoft Azure.
• Support the implementation of Zero Trust security models.
• Connect IAM solutions across both office and operational technology networks.
• Perform regular access reviews to ensure users have appropriate permissions.

Privileged Access Management (PAM):

• Implement and manage PAM solutions to secure highly sensitive administrator accounts.
• Enforce “just-in-time” access and monitor privileged sessions.
• Manage emergency access procedures and conduct regular account reviews.

User Access Lifecycle:

• Automate the process for granting, changing, and revoking user access.
• Implement role-based (RBAC) and attribute-based (ABAC) access control models.

Governance & Compliance:

• Manage platforms for access certifications and reviews.
• Enforce policies to prevent conflicting permissions (Segregation of Duties).
• Create compliance reports and ensure IAM practices meet standards like ISO 27001 and Qatar's NIA, QCSF, and PDPPL.
• Produce IAM performance metrics and dashboards for leadership.

Collaboration & Integration:

• Work with application owners, IT teams, and business units to understand their IAM needs.
• Integrate IAM solutions across multiple cloud environments (AWS, Azure, GCP).
• Assist with security investigations and incident response related to access issues.

Requirements

Qualifications & Skills:

• 8+ years in hands-on IAM engineering, administration, and PAM implementation.
• Arabic language skills are a strong advantage.

Technical Expertise:

• Hands-on experience with major IAM and Identity Governance (IGA) platforms.
• Deep knowledge of IAM in GCP (Cloud Identity, IAM, Workload Identity Federation, Identity-Aware Proxy).
• Deep knowledge of IAM in Azure (Entra ID, Conditional Access, Privileged Identity Management).
• Proven experience implementing and managing PAM solutions (e.g., CyberArk).
• Strong background in Active Directory security and administration.
• Experience integrating IAM with various applications and cloud services.
• Skill in configuring cloud identity providers and managing service accounts securely.

Education & Certification:

• Bachelor’s degree in Computer Science, Information Security, or a related field.
• Relevant certifications such as CISSP, CCSP, Azure Security Engineer, GCP Cloud Security Engineer, CyberArk, or SailPoint certifications. (Preferred)