IAM Engineer Active Directory SSO SAML OIDC SailPoint

The IAM Engineer will deliver authentication and access control integration aligned to DEWA IAM standards, focusing on implementing single sign-on, role-based access control, multi-factor authentication, session policies, and privileged access patterns. This role involves working with security architects on PAM integrations, implementing provisioning/deprovisioning flows, and producing documentation for audit compliance. Strong experience with Active Directory, SAML, and OpenID Connect is essential.

Must Have

• Implement SSO, RBAC, MFA, and session control policies aligned to DEWA IAM standards.
• Work with security architect on privileged access patterns, just in time access, and PAM integrations.
• Implement provisioning, deprovisioning flows, and access recertification support.
• Produce authorization matrices, access control documentation, and integration specifications for audit compliance.
• Strong enterprise IAM integration experience with Active Directory, SAML, OpenID Connect, and identity federation patterns.
• Proven understanding of role based access control (RBAC), attribute based access control (ABAC) concepts, and audit requirements.
• Hands-on experience implementing single sign on, multi factor authentication, session control, and privileged access management.
• Familiarity with identity governance tools such as SailPoint for provisioning, deprovisioning, and access recertification.

Job Description

The IAM Engineer Active Directory SSO SAML OIDC SailPoint will deliver authentication and access control integration aligned to DEWA IAM standards. The role focuses on implementing single sign on role based access control multi factor authentication session policies and privileged access patterns for the virtual command center platform. The position requires strong enterprise IAM integration experience with Active Directory SAML OpenID Connect and understanding of audit compliance requirements.

Key Responsibilities

• 1.Implement SSO RBAC role mapping multi factor authentication flows and session control policies aligned to DEWA IAM standards.
• 2.​Work with security architect on privileged access patterns just in time access and PAM integrations where applicable.
• 3.​Implement provisioning deprovisioning flows and access recertification support as required by enterprise governance.
• 4.​Produce authorization matrices access control documentation and integration specifications for audit compliance.

Qualifications & Requirements

• 1.Strong enterprise IAM integration experience with Active Directory SAML OpenID Connect and identity federation patterns.
• 2.​Proven understanding of role based access control RBAC attribute based access control ABAC concepts and audit requirements.
• 3.​Hands on experience implementing single sign on multi factor authentication session control and privileged access management.
• 4.​Familiarity with identity governance tools such as SailPoint for provisioning deprovisioning and access recertification where required.

Experience Requirements

• 6 to 10 years of enterprise IAM integration and identity management experience adjust as needed

About Our Company

Mobiloitte is a global technology consulting and engineering organization delivering enterprise scale solutions across AI data cloud mobility and digital platforms. The company partners with enterprises governments and fast growing organizations worldwide to design build and operate secure scalable and production ready systems with strong focus on identity access management cybersecurity and regulatory compliance.

Additional Information

Core tech stack Active Directory SAML OIDC SSO RBAC MFA SailPoint identity governance session management and privileged access controls integrated across DEWA ecosystem. ​Critical role requiring close coordination with security architect API integration engineer and all platform components ensuring consistent secure identity patterns and audit readiness.