MisuJob - AI Job Search Platform MisuJob
Login Sign Up

 Identity Security Consultant

VAMSystems

Doha, , Qatar permanent

Posted: April 5, 2026

Interested in this position?

Create a free account to apply with AI-powered matching

Register to Apply

Quick Summary

Own identity security engineering across identity security consulting projects, ensuring compliance with industry standards and best practices.

Required Skills

8+ years Active Directory Design Conditional Access MFA Troubleshooting Root-cause analysis Communication Design Microsoft Entra ID security Identity Protection SOC-level understanding

Job Description

We are currently looking   Identity Security Consultant our Qatar operations.

Required Experience & Skills

• 8+ years in Identity Security / Security Engineering
• Deep hands‑on experience with:
• Active Directory security
• Microsoft Entra ID security
• Conditional Access, MFA, Identity Protection
• Strong PAM / PIM implementation experience
• SOC‑level understanding of identity attack detection and response
• Strong troubleshooting and root‑cause analysis skills
• Excellent written and verbal communication skills

Core Responsibilities

• Own identity security engineering across Active Directory (on‑prem) and Microsoft Entra ID
• Design, implement, and harden identity security configurations
• Act as technical authority for identity threat prevention, detection, and response
• Bridge Identity Engineering and SOC / Incident Response
• Mitigate Red team findings
• Active Directory Security (On‑Prem)
• Secure AD DS architecture and configurations
• Implement and enforce AD Tiering model (Tier 0 / Tier 1 / Tier 2)
• Protect Tier‑0 assets (Domain Controllers, PKI, ADFS, Entra Connect)
• Harden:
• Kerberos authentication
• NTLM usage and restrictions
• Delegation (constrained, resource‑based)
• GPOs for security baselines
• Manage privileged groups and admin separation
• Secure trust relationships and forest/domain boundaries
• Implement PAW / SAW / hardened admin access patterns
• Review and remediate AD attack paths and misconfigurations

Entra ID (Azure AD) Security

• Design and enforce Conditional Access policies
• Implement strong authentication strategies (MFA, passwordless, phishing‑resistant MFA)
• Configure and monitor Entra ID Identity Protection
• Harden tenant security posture and reduce identity attack surface
• Control and monitor:
• Legacy authentication
• OAuth app permissions and consent
• Authentication methods and user flows
• Govern roles, service principals, and app registrations
• Secure Entra ID Connect / Cloud Sync architecture

 Privileged Access Management (PAM / PIM)

• Design and implement least‑privilege access models
• Understand and work with Cyberark integrations, Sailpoint etc.
• Implement and operationalize Entra PIM:
• Just‑In‑Time role activation
• Approval workflows
• Role eligibility governance
• Access reviews and alerts
• Identity Threat & Attack Chain Expertise

Deep understanding of identity‑based attacks, including:

• Credential theft and replay
• Pass‑the‑Hash / Pass‑the‑Ticket
• Kerberoasting / AS‑REP roasting
• DCSync / DCShadow
• Golden and Silver Ticket attacks
• Privilege escalation and lateral movement
• Persistence mechanisms in AD and Entra ID
• OAuth token abuse and app consent attacks
• MFA fatigue and authentication bypass techniques
• Map attacker techniques to prevention, detection, and remediation controls

 SOC Integration & Detection Engineering

• Work closely with SOC teams on identity‑related threats
• Define and improve identity detection use‑cases
• Ensure logging and visibility for:
• Windows Security Event Logs
• Entra ID audit and sign‑in logs
• Integrate identity telemetry with SIEM / SOAR platforms
• Tune alerts to reduce false positives and improve signal quality
• Build and maintain identity incident response playbooks
• Support investigations of compromised accounts and privilege abuse

Hardening, Assessments & Continuous Improvement

 

• Perform AD and Entra ID security posture assessments
• Identify configuration drift, technical debt, and risk exposure
• Deliver remediation plans and track closure
• Drive continuous identity security improvement initiatives
• Align identity security posture with Zero Trust principles

 Governance, Risk & Compliance

• Ensure identity controls meet internal security standards and regulatory requirements
• Support audit and risk assessments related to identity and access
• Provide evidence, documentation, and technical justifications
• Participate in design and security review boards

 Documentation & Knowledge Transfer

• Produce clear, audit‑ready documentation:
• Identity architecture diagrams
• Security standards and configuration baselines
• SOPs and operational runbooks
• Incident response procedures
• Provide knowledge transfer and guidance to internal teams

Joining time frame: 2 weeks (maximum 1 month)

Why Apply Through MisuJob?

AI-Powered Job Matching: MisuJob uses advanced artificial intelligence to analyze your skills, experience, and career goals. Our matching algorithm compares your profile against thousands of job requirements to find positions where you have the highest chance of success. This saves you hours of manual job searching and ensures you only see relevant opportunities.

One-Click Applications: Once you create your profile, applying to jobs is effortless. Your resume and cover letter are automatically tailored to highlight the most relevant experience for each position. You can apply to multiple jobs in minutes, not hours.

Career Intelligence: Beyond job matching, MisuJob provides valuable career insights. See how your skills compare to market demands, identify skill gaps to address, and understand salary benchmarks for your experience level. Make data-driven decisions about your career path.

Frequently Asked Questions

How do I apply for this position?

Click the "Register to Apply" button above to create a free MisuJob account. Once registered, you can apply with one click and track your application status in your dashboard.

Is MisuJob free for job seekers?

Yes, MisuJob is completely free for job seekers. Create your profile, get matched with jobs, and apply without any cost. We help you find your dream job without any hidden fees.

How does AI matching work?

Our AI analyzes your resume, skills, and experience to understand your professional profile. It then compares this against job requirements using natural language processing to calculate a match percentage. Higher matches mean better fit for the role.

Can I apply to jobs in other countries?

Absolutely. MisuJob features jobs from companies worldwide, including remote positions. Filter by location or look for remote opportunities to find jobs that match your preferences.

Ready to Apply?

Join thousands of job seekers using MisuJob's AI to find and apply to their dream jobs automatically.

Create Free Account Sign In
← Browse all jobs
Register to Apply