Identity Security Consultant
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
We are currently looking Identity Security Consultant our Qatar operations.
Key Skills for This Role
Full Job Posting
Job Description
We are currently looking **Identity Security Consultant** our **Qatar** operations.
Required Experience & Skills
- 8+ years in Identity Security / Security Engineering
- Deep hands‑on experience with:
- Active Directory security
- Microsoft Entra ID security
• Conditional Access, MFA, Identity Protection
- Strong PAM / PIM implementation experience
- SOC‑level understanding of identity attack detection and response
- Strong troubleshooting and root‑cause analysis skills
- Excellent written and verbal communication skills
Core Responsibilities
- Own identity security engineering across Active Directory (on‑prem) and Microsoft Entra ID
- Design, implement, and harden identity security configurations
- Act as technical authority for identity threat prevention, detection, and response
- Bridge Identity Engineering and SOC / Incident Response
- Mitigate Red team findings
• Active Directory Security (On‑Prem)
- Secure AD DS architecture and configurations
- Implement and enforce AD Tiering model (Tier 0 / Tier 1 / Tier 2)
- Protect Tier‑0 assets (Domain Controllers, PKI, ADFS, Entra Connect)
- Harden:
- Kerberos authentication
- NTLM usage and restrictions
- Delegation (constrained, resource‑based)
- GPOs for security baselines
- Manage privileged groups and admin separation
- Secure trust relationships and forest/domain boundaries
- Implement PAW / SAW / hardened admin access patterns
- Review and remediate AD attack paths and misconfigurations
Entra Id (Azure Ad) Security
- Design and enforce Conditional Access policies
- Implement strong authentication strategies (MFA, passwordless, phishing‑resistant MFA)
- Configure and monitor Entra ID Identity Protection
- Harden tenant security posture and reduce identity attack surface
- Control and monitor:
- Legacy authentication
- OAuth app permissions and consent
- Authentication methods and user flows
- Govern roles, service principals, and app registrations
- Secure Entra ID Connect / Cloud Sync architecture
Privileged Access Management (Pam And Pim)
- Design and implement least‑privilege access models
- Understand and work with Cyberark integrations, Sailpoint etc.
- Implement and operationalize Entra PIM:
- Just‑In‑Time role activation
- Approval workflows
- Role eligibility governance
- Access reviews and alerts
• Identity Threat & Attack Chain Expertise
- **Deep understanding of identity****‑****based attacks, including:**
- Credential theft and replay
• Pass‑the‑Hash And Pass‑the‑Ticket
- Kerberoasting / AS‑REP roasting
• DCSync And DCShadow
- Golden and Silver Ticket attacks
- Privilege escalation and lateral movement
- Persistence mechanisms in AD and Entra ID
- OAuth token abuse and app consent attacks
- MFA fatigue and authentication bypass techniques
- Map attacker techniques to prevention, detection, and remediation controls
Soc Integration & Detection Engineering
- Work closely with SOC teams on identity‑related threats
- Define and improve identity detection use‑cases
- Ensure logging and visibility for:
• Windows Security Event Logs
- Entra ID audit and sign‑in logs
- Integrate identity telemetry with SIEM / SOAR platforms
- Tune alerts to reduce false positives and improve signal quality
- Build and maintain identity incident response playbooks
- Support investigations of compromised accounts and privilege abuse
Hardening, Assessments & Continuous Improvement
- Perform AD and Entra ID security posture assessments
- Identify configuration drift, technical debt, and risk exposure
- Deliver remediation plans and track closure
- Drive continuous identity security improvement initiatives
- Align identity security posture with Zero Trust principles
Governance, Risk & Compliance
- Ensure identity controls meet internal security standards and regulatory requirements
- Support audit and risk assessments related to identity and access
- Provide evidence, documentation, and technical justifications
- Participate in design and security review boards
Documentation & Knowledge Transfer
- Produce clear, audit‑ready documentation:
- Identity architecture diagrams
- Security standards and configuration baselines
- SOPs and operational runbooks
- Incident response procedures
- Provide knowledge transfer and guidance to internal teams
- **Joining time frame:** 2 weeks (maximum 1 month)
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at VAM SYSTEMS
Information Security Architect - Banking
Dubai, UAE
VAM Systems is seeking an Information Security Architect for UAE operations with mandatory banking experience. The role requires 10+ years of information security experience and 5+ years as an architect, with expertise i
ICFR/SOX Compliance - IT Audit - Banking
Dubai, UAE
VAM Systems seeks an experienced ICFR/SOX Compliance and IT Audit professional for a banking client in UAE. The role requires 4-7 years of experience in IT audit, risk advisory, and hands-on GITC, ITAC, and IPE testing w
Senior Officer- Audit Testing - Banking
, UAE
VAM SYSTEMS is looking for a Senior Officer in Audit Testing for UAE operations, focusing on IT audit, ICFR/SOX compliance, and risk advisory within banking. The role requires 4-7 years of experience and professional cer
Financial Control – ICFR IT Controls Testing
Dubai, UAE
VAM SYSTEMS is seeking an Assistant Manager for Financial Control – ICFR IT Controls Testing in Dubai. The role involves testing IT controls supporting financial reporting, including GITC, IT application controls, interf
Oracle Fusion HCM Consultant
Dubai, UAE
VAM SYSTEMS is seeking an Oracle Fusion HCM Consultant for UAE operations with minimum 8 years of experience in Oracle Fusion HCM implementation and support. Required expertise includes Global HR, Talent Management, Appr
Audit Testing - IT Risk, Internal Audit -Banking
Dubai, UAE
VAM Systems is seeking an experienced IT Audit professional for a banking client in the UAE. The role requires 4-7 years of experience in IT Audit, ICFR/SOX Compliance, or IT Risk within financial services, with hands-on
Optimizely Certified CMS Developer
Dubai, UAE
VAM SYSTEMS is seeking an experienced Optimizely Certified CMS Developer for a remote role based in UAE. The ideal candidate will have 6-10+ years of .NET/ASP.NET Core experience and 4+ years hands-on with Optimizely CMS
Senior Technical Lead – Optimizely Full Stack (CMS + CMP)- (Offshore - Work From Home)
Dubai, UAE
VAM SYSTEMS seeks a Senior Technical Lead for Optimizely Full Stack (CMS + CMP) for UAE operations, working remotely. The role involves end-to-end architecture, CMS/CMP content lifecycle design, API integration, and ment
Information Security Architect - Banking
Dubai, UAE
ICFR/SOX Compliance - IT Audit - Banking
Dubai, UAE
Senior Officer- Audit Testing - Banking
, UAE
Financial Control – ICFR IT Controls Testing
Dubai, UAE
Oracle Fusion HCM Consultant
Dubai, UAE
Audit Testing - IT Risk, Internal Audit -Banking
Dubai, UAE
Optimizely Certified CMS Developer
Dubai, UAE
Senior Technical Lead – Optimizely Full Stack (CMS + CMP)- (Offshore - Work From Home)
Dubai, UAE