Identity & Access Management (IAM) Specialist

RoleDewan Architects & Engineers is a global design consultancy firm with 900+ professionals across offices in the UAE, Saudi Arabia, Egypt, Vietnam, the Philippines, and Iraq. We are seeking an Identity & Access Management (IAM) Specialist to join our Cairo office. In this role, you will own and support IAM operations across the organization, ensuring the right people have the right access to the right systems at the right time, while strengthening security through best-practice controls, automation, and governance. You will work closely with IT, Information Security, and business stakeholders, and support other regional offices during standard business hours (M–F; 8:00am – 5:00pm).What You Will DoCommunicate and collaborate effectively with all levels of staff from end users to managers and Principals to deliver secure, user-friendly access solutions.Manage the Joiner–Mover–Leaver (JML) lifecycle: provisioning, access changes, and timely deprovisioning.Administer and maintain identity platforms (e.g., Microsoft Active Directory / Entra ID) including groups, roles, and access policies.Implement and support SSO, MFA, conditional access, and federation for enterprise and cloud applications (e.g., SAML, OAuth/OIDC).Enforce least-privilege access using RBAC/ABAC concepts; review privileged access and support PAM controls where applicable.Own IAM governance activities: periodic access reviews/recertifications, role design, approvals workflow, and segregation-of-duties support.Integrate and onboard applications into IAM (SaaS, on-prem, and cloud), partnering with application owners to define access models.Support identity-related incident response (e.g., suspicious logins, compromised accounts, access misuse) and improve preventive controls.Maintain accurate records for access requests, approvals, reviews, and audit evidence; create and update IAM documentation and SOPs.Contribute to IT security and infrastructure projects as required and continually expand knowledge of Dewan’s technology landscape.Demonstrate ethical and professional behavior and adherence to company policies and procedures. QualificationsBachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field (or equivalent experience).3+ years of hands-on experience in IAM / Access Management / Directory Services in an enterprise environment.Strong working knowledge of Active Directory, Entra ID (Azure AD), group/role management, and identity lifecycle processes.Experience with SSO and federation (SAML 2.0, OAuth 2.0, OpenID Connect) and MFA/conditional access policy design.Familiarity with ticketing processes, change control, and maintaining clear support records in a fast-paced environment.Strong troubleshooting and communication skills; ability to work independently and as part of a team.Willingness to participate in occasional off-hours/weekend support for upgrades and initiatives.Bonus PointsExperience with IAM vendors (e.g., Okta, Ping, SailPoint, Saviynt, Microsoft Identity Manager / Entra ID Governance).Scripting/automation skills (PowerShell, Python) for provisioning, reporting, and audit evidence generation.Security certifications (e.g., SC-300, AZ-500, Security+, CISSP) or ITIL.Experience supporting geographically distributed operations and multi-region access requirements.