img
نوع العقددوام كامل
طبيعة الوظيفةبالموقع
الموقعالرياض

وصف الوظيفة

About the Role

Inbox Business Technologies is seeking an IAM Senior Engineer to join our team in Riyadh, Riyadh. This full-time role is central to designing, implementing, and maintaining robust enterprise Identity & Access Management (IAM) solutions. The successful candidate will ensure secure and seamless access to systems and data, leading technical initiatives, automating identity lifecycle processes, and integrating applications while enforcing critical security policies across the organization. This position requires 5-10 years of relevant experience and involves collaboration with security, infrastructure, and application teams to align IAM with business needs and zero-trust security principles.

IAM Architecture and Engineering

This role involves significant contributions to the architectural design and engineering of IAM solutions. Key responsibilities include:

  • Designing and implementing comprehensive IAM architectures, including identity lifecycle management, authentication and authorization models, access governance, and role-based/attribute-based access control (RBAC/ABAC).
  • Implementing Zero-Trust aligned identity controls to enhance security posture.
  • Developing system integrations utilizing APIs, Single Sign-On (SSO), federation protocols (SAML, OAuth, OIDC), and SCIM provisioning.

Identity Lifecycle and Directory Services Management

The Senior IAM Engineer will manage identity lifecycles and directory services, focusing on automation and optimization:

  • Automating joiner/mover/leaver (JML) workflows to streamline identity provisioning and de-provisioning.
  • Building custom connectors, provisioning scripts, and automation pipelines using tools like PowerShell and Windows Script.
  • Optimizing identity data flows between HR systems, directories, and various applications.
  • Managing enterprise identity directories such as Active Directory, Entra ID, and LDAP.
  • Implementing Multi-Factor Authentication (MFA), passwordless authentication, and adaptive access policies.
  • Troubleshooting authentication issues across various protocols, including Kerberos, LDAP, SAML, OAuth , and OIDC.

Access Governance and Privileged Access Management

This role includes ensuring robust access governance and secure management of privileged access:

  • Ensuring adherence to access policies and relevant regulatory requirements (*, ISO 27001, SOX, HIPAA, PCI).
  • Supporting access certifications/attestations and conducting periodic access reviews and risk analysis.
  • Developing and maintaining IAM standards, patterns, and playbooks.
  • Administering Privileged Access Management (PAM) platforms such as CyberArk, BeyondTrust, or Delinea.
  • Implementing vaulting, credential rotation, session monitoring, and just-in-time access mechanisms.
  • Working to reduce standing privileges and legacy administrative accounts.

Application Integration and Incident Response

The engineer will also be responsible for secure application integration and responding to security incidents:

  • Onboarding applications for Single Sign-On (SSO) and provisioning using SAML, OAuth, and SCIM.
  • Collaborating with developers and product teams to implement secure, modern identity patterns.
  • Investigating and resolving IAM-related security incidents.
  • Supporting the Security Operations Center (SOC) with identity-specific detection, alerts, and forensics.
  • Performing root-cause analysis for identity access failures.

Required Skills and Qualifications

Candidates for this role should possess a strong technical background and essential soft skills:

  • Technical Skills:
    • Strong expertise in IAM platforms such as Okta, Azure AD/Entra ID, Ping, ForgeRock, or SailPoint.
    • Proficiency with directory services including Active Directory and LDAP.
    • Experience with SSO/Federation technologies (SAML, OIDC, OAuth) and SCIM provisioning.
    • Familiarity with privileged access technologies.
    • Understanding of Zero Trust principles.
    • Knowledge of cloud platforms such as Azure, AWS, or GCP.
  • Soft Skills:
    • Strong problem-solving and analytical mindset.
    • Ability to communicate effectively with both technical and non-technical stakeholders.
    • Experience leading projects and delivering enterprise-grade solutions.

متطلبات الوظيفة

  • تتطلب ٥-١٠ سنوات خبرة

وظائف مشابهة