Manager - Identity and Access Management

Overview

About the role:

The main purpose of the role is to manage the design, development and implementation of IDAM systems, including SSO, authentication and access controls ensuring confidentiality, integrity and availability of IDAM systems and data. Responsibilities will include, but not be limited to, performing reviews, assessments and audits, conducting research, and facilitating communication to internal and external stakeholders where necessary. The role will require to assess current IAM tools, design and implement new systems with related processes, as well as support the design and integration of IAM services with new initiatives and organization structures.

Core42 is the UAE’s national-scale enabler for cloud and generative AI, combining G42 Group’s expertise across multiple technology disciplines into a single platform for public sector and large enterprise transformations. Building on our capabilities as sovereign cloud and HPC specialist, we bring generative AI, cybersecurity, professional and managed services expertise to enable national-scale program deployments across industries.

Responsibilities

• Set overall IAM architecture direction for C42 and identify potential opportunities for consolidation or remediation of IAM capability across people, process, and technology.
• Lead development and socialization of IAM reference architecture and develop implementable transformation plans.
• Design, develop, implement, and maintain IAM solutions, including identity provisioning, access control, authentication, and authorization mechanisms.
• Work with C42 IT Organization stakeholders to define IAM processes and short and long-term IAM roadmaps based on an understanding of the organizational strategic requirements, technology context and business needs.
• Design IAM workflows, policies, and procedures to ensure secure and efficient access management using Sailpoint.
• Manage user onboarding, offboarding, and role changes, ensuring adherence to security policies and compliance requirements.
• Automate user provisioning and deprovisioning processes to enhance efficiency.
• Define and enforce access control policies, including role-based access control (RBAC), least privilege principle, and segregation of duties (SoD).
• Conduct periodic access reviews and audits to maintain compliance.
• Guide maintenance, upgrades, and support for existing systems and infrastructure to ensure operational stability.
• Lead and guide the development efforts to drive automation and enable operational teams and end users to move towards self‐
• Provide on‐going guidance to operational teams for proactive management, monitoring, and support of the environment.
• Manage & monitor quality of services delivered by internal & external teams and partners.
• Lead the response to IAM-related incidents, investigate security breaches, and perform root cause analysis.
• Develop metrics to measure IAM processes and report on policy compliance.
• Develop / enhance and document a comprehensive understanding of the C42 IAM ecosystem (e.g., tools, processes, activities, etc.).
• Keep abreast with emerging Identity and Access Management trends and issues; and understand business related cyber security risks and support requirements to support the GM-IS in developing strategic plans and identity and access management requirements
• Act as the primary point of contact within the organization for members of staff, regulators, and any relevant public bodies on issues related to data protection, Identity & Access Management, and Security Awareness.
• Ensure the company’s procedures are in line with applicable local and international Data Protection Regulations and codes of practice
• Coach other members of the organisation on the best practices that should be followed in identity and access management
• Evaluate the existing data protection framework and identify areas of non or partial compliance and rectify any issues
• Manage the Identity and Access management team.
• Draft new and amend existing internal Identity & Access Management, Security Awareness and data protection policies, guidelines, and procedures, in consultation with key stakeholders.
• Implement and manage the procedures and required regulatory controls
• Implement and manage Data Governance Controls
• Implement and manage identity related risks and Controls.
• Hold training with staff members across different business units who are involved in data handling or processing as well as training related to Security Awareness.
• Proactively conduct IT compliance checks to ensure adherence and address potential issues
• Maintain records of all data processing activities carried out by the company
• Coordinate our response to data subject rights requests, if required
• Conduct root cause analysis of personal data breaches and identify remedial actions where required
• Report key risks and mitigating controls as well as the quality of compliance programs to senior management regularly and obtain resulting feedback

Qualifications

• Bachelors or Master’s degree in IT, Information Security, Computer science or related field.
• Minimum of 10 years of experience working in Information security and data protection operations and compliance and the last years in a leading role.
• Experience with authentication standards and technologies such as multi factor authentication, JSON Web Token (JWT) and single sign-on (SSO).
• Hands on technical experience in systems integration or software engineering of one or more identity and access management (IAM) solutions (such as BeyondTrust, CyberArk, AWS, Duo, OIM, Ping Identity, RadiantLogic, SailPoint, Okta, Active Directory)
• Hands on experience in SailPoint, Azure AD, BeyondTrust, and OKTA solutions/tools design, implementation, development, and configuration.
• Experience with Linux/Unix, Windows, scripting (with programming languages such as Bash, PowerShell, Java, C#, C/C++, Python, JavaScript, Perl), SQL, LDAP, and web services
• Experience with role-based access controls and configuring automated provisioning and deprovisioning.
• Well experienced with following processes: identity management workflows, Access provisioning, deprovisioning and Remediation, and Role Management.
• Previous supervisory experience.
• Strong analytical and critical thinking skills, and excellent written and oral communication & presentation skills
• Experience in providing business needs/requirements for development of an identity and access management solution across the organization.
• Ability to communicate complex technical messages in writing, presentation or directly in meetings.
• Requires strong interpersonal and organizational skills, including the ability to meet deadlines, follow written policies standards and procedures, and provide consistent and superior customer service
• Knowledge of identity and access management best practices, procedures, and software solutions such as SailPoint, Beyond trust PAM, Azure PIM and/or EPM, CyberArk, ForgeRock, Okta or Ping Identity.
• Proficient in Microsoft Office Suite or related writing and presentation software
• Expertise in local and international data protection and information security laws and practices, including an in-depth understanding of Abu Dhabi Global Market Data Protection Regulation, EU’s General Data Protection Regulation etc.
• Experience with implementation of data privacy standards like GDPR in a complex organizational environment
• Strong project management skills
• Ability to work well under pressure and manage sensitive and confidential information
• Excellent verbal and written communication skills, with strong attention to detail
• Recognized security industry certifications (CISSP, CIAM, SailPoint etc.)

What we look for

If you are a performance-driven, inquisitive mind with the agility to adapt to ambiguity, you will fit right in. You should be eager to explore opportunities to build meaningful collaborations with stakeholders and aspire to create unique customer-centric solutions. Bias for action and a passion to conquer new frontiers in the AI space is at the heart of the Core42 community.

What working at Core42 offers

Culture: An open, diverse and inclusive environment with a global vision that encourages personal growth and focuses on ground-breaking, industry-first innovations.

Career: Outstanding learning, development & growth opportunities via structured training programs and innovative, high-tech projects.

Work-Life: A hybrid work policy to strike the perfect balance between office and home.

Rewards: A competitive remuneration package with a host of perks including healthcare, education support, leave benefits and more.

If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible.