Cyber Security IAM & PKI Specialist

What are your contributions to the team?

• Identity Architect - Act as the SME (Subject Matter Expert) for the identity technology stack, plan and prioritize the technology roadmap, track deployments.
• PKI (Public Key Infrastructure) Specialist - Own, develop and drive the current state and future state plan for PKI.
• Identity Threat Engineer/Specialist - Collaborate with the SOC (Security Operations Centre) to mature and enhance telemetry, processes and response to cyber threats.

How to thrive in this role?

• You hold a bachelor’s degree in cyber security, information security, computer science, or relevant field of study. 
• You have over 6 years of experience with identity lifecycle management (Joiner/Mover/Leaver), access governance, and least‑privilege access models.
• You have a strong knowledge of authentication and authorization protocols (SAML, OAuth 2.0, OpenID Connect, LDAP, Kerberos).
• You have hands‑on experience with enterprise IAM (Identity & Access Management) platforms (e.g., Azure Entra ID, SailPoint, Okta, CyberArk, MFA).
• You have proven experience designing, operating, and evolving enterprise PKI (Public Key Infrastructure) environments (internal and public CAs).
• You have a strong understanding of certificate lifecycle management, TLS/SSL, and cryptographic trust models.
• You have experience securing non‑human identities such as applications, services, workloads, and APIs.
• You have experience with human identities in medium to high trust environments such as formal digital signature of documents and software.
• You are familiar with key management practices, HSMs (Hardware Security Modules), and cloud‑native key services.
• You have experience integrating IAM (Identity & Access Management) and PKI signals into SIEM/XDR platforms.
• You have a solid understanding of identity‑based attack techniques, including credential abuse, lateral movement, and privilege escalation.
• You have the ability to define identity‑centric detection use cases and collaborate with SOC (Security Operations Center) teams on response and remediation.
• You have experience securing hybrid and cloud environments (Azure, AWS, Google or partner clouds) using identity‑centric security patterns.
• You possess scripting and automation skills (PowerShell, Python, REST APIs) to reduce manual effort and operational risk.
• You have a strong architectural mindset with the ability to translate business requirements into scalable, secure identity solutions.
• You are familiar with Zero Trust principles and modern identity‑first security architecture.