{bc}

IAM/PAM PKI Engineer

IT-Security C&TSaudi Arabia, KSA1 months agoSenior
Senior

Skills

engineeringdesignproject management

About This Role

Overview

Operate and improve enterprise Identity security capabilities with focus on

Cerebra mPass (MFA)

and

CyberArk (PAM)

.

You will stabilize day to day operations, drive onboarding and policy improvements, and prepare the roadmap for

Windows Hello for Business

migration and future adoption of

SailPoint (IGA)

,

BeyondTrust (PAM)

, and

Thales HSM for PKI

.

Strong troubleshooting, documentation, and audit evidence discipline are essential.

Key Responsibilities

  • MFA.
  • Cerebra mPass
  • Design, configure, and support Cerebra mPass MFA policies, integrations, and user onboarding.
  • Integrate MFA with enterprise systems (VPN, remote access, cloud apps, internal applications) using standard authentication protocols.
  • Monitor authentication flows, troubleshoot access issues, and improve reliability and user experience.
  • Prepare and execute the migration roadmap from mPass to

Windows Hello for Business

, including pilot planning, risk management, and cutover support.

PAM. CyberArk (Current). BeyondTrust (Future)

  • Operate and scale CyberArk (safes, platforms, CPM/PSM health, onboarding, rotations, access workflows).
  • Drive privileged account onboarding and operational hygiene (break glass, vault policies, RBAC, session controls).
  • Support evaluation and future rollout of BeyondTrust as needed (requirements, migration planning, operational model).

IGA. SailPoint (Future)

  • Support readiness for IGA adoption (joiner mover leaver flows, SoD concepts, connector requirements, campaign approach, reporting needs).
  • Contribute to implementation planning and operational runbooks once adopted.

PKI coordination. Thales HSM (Future)

  • Coordinate certificate lifecycle processes and integrations with the AD and PKI stakeholders.
  • Support discovery, inventory, renewal tracking, and certificate operational processes.
  • Participate in planning for

HSM-backed PKI with Thales

  • (key ceremony concepts, dual control, CRL/OCSP operational readiness).
  • Note: day to day AD CS administration is owned by the AD team.
  • Operations, compliance, and delivery hygiene
  • Ensure IAM, MFA, and PAM events are visible in SIEM. Maintain health KPIs and reduce alert noise.
  • Execute changes via ITSM with clear testing, validation, rollback, and post change checks.
  • Lead or support RCA for major incidents. Publish SOPs, runbooks, and hardening guidance.
  • Produce audit ready evidence aligned with KSA cybersecurity requirements, including access controls and privileged access governance.

Automation

  • Use PowerShell, Python, and REST APIs to automate onboarding, rotations, reporting, and operational checks.

Your resume, rewritten for this exact role.

Sign up free — Base Career tailors your CV to this job description in 60 seconds.

01 / 05

Resume Tailored to This Job

Resume Tailored to This Job

Your keywords, structure, and story — rewritten to match this exact role and pass ATS filters.

Get My Free Resume

Free · No card · 60 seconds

02 / 05

Cover Letter for This Role, Done

Cover Letter for This Role, Done

Job-specific cover letters written in Gulf professional tone — ready in seconds, not hours.

Get My Cover Letter

Free · No card · 60 seconds

03 / 05

See How Well You Fit This Role

See How Well You Fit This Role

AI match score with clear reasons — know your fit before investing time in the application.

Check My Fit Score

Free · No card · 60 seconds

04 / 05

Apply in One Click

Apply in One Click

Autofill any application form on Workday, LinkedIn, Bayt, Greenhouse — with your tailored content.

Start Applying Faster

Free · No card · 60 seconds

05 / 05

Track It. Follow Up at the Right Time.

Track It. Follow Up at the Right Time.

Visual pipeline for every application with AI-timed follow-up reminders so nothing slips.

Track My Applications

Free · No card · 60 seconds

2.2K+

Cover Letters & Follow-ups

1.8K+

Resumes Tailored

190.5K+

Jobs Tracked

Trusted by professionals at

PwC//
Emaar//
KPMG//
Noon//
Amazon AWS//
Talabat//
Deloitte//
Emirates//
Careem//
Aramex//
McKinsey//
Property Finder//
Majid Al Futtaim//
Chalhoub Group//
PwC//
Emaar//
KPMG//
Noon//
Amazon AWS//
Talabat//
Deloitte//
Emirates//
Careem//
Aramex//
McKinsey//
Property Finder//
Majid Al Futtaim//
Chalhoub Group//
AI Job Platform

Stop applying blindly. Start getting hired.

Base Career automates the hardest parts of job searching — apply smarter, not harder.

AI Resume in 60s

Your resume rewritten for this exact role using the job description as the brief.

ATS-Optimized

Get past automated screening filters with the right keywords matched to each job.

Application Tracker

Track every job, follow-up, and interview in one visual kanban board.

Free plan · No credit card required