Job description

The Sr. Cybersecurity Engineer (IAM & PAM) role based in Riyadh, Riyadh Province, Saudi Arabia is an onsite, full-time cybersecurity position focused on administering and maintaining Identity and Access Management (IAM) and Privileged Access Management (PAM) platforms to ensure high availability, performance, and reliability. The role is responsible for designing and enforcing identity lifecycle processes including onboarding, offboarding, and role-based access modifications, as well as managing access provisioning, de-provisioning, and conducting regular access reviews for users, applications, and systems. The position governs privileged account activities by applying best practices for privilege escalation, session monitoring, and credential management, while ensuring compliance with internal access policies and supporting both external and internal audit requirements. The engineer optimizes detection rules, policies, and automation workflows to enhance operational efficiency, troubleshoots and resolves access-related incidents in collaboration with IT and application support teams, and maintains up-to-date documentation for IAM/PAM architectures, configurations, policies, and operational procedures. The role supports the integration of IAM/PAM systems across hybrid environments including on-premise and cloud platforms, collaborates with security architects and GRC (Governance, Risk, and Compliance) teams to improve overall security posture, and works alongside other cybersecurity teams such as Threat Intelligence, Incident Response, and Red Team to strengthen detection and response mechanisms. The position requires strong expertise in IAM platforms such as SailPoint, practical experience with PAM tools like BeyondTrust, knowledge of SSO, MFA, RBAC, Zero Trust, and access governance frameworks, and familiarity with compliance standards including ISO 27001, NIST, NCA ECC, and GDPR.