Job Description

Roles & Responsibilities

• Secrets Management & PAM Operations

  • Design, implement, and manage Secrets Management solutions for applications, services, and infrastructure (e.g., CyberArk Secrets Management, CCP, Conjur, or equivalent platforms).

  • Eliminate hard‑coded credentials across applications and automation pipelines.

  • Manage secure storage, retrieval, rotation, and lifecycle of application secrets, service accounts, API keys, certificates, and tokens.

  • Integrate secrets management with on‑prem, cloud (AWS, Azure), and containerized environments.

  Security & Governance

  • Enforce least‑privilege access and Zero Trust principles for privileged and non‑human identities.

  • Ensure compliance with CBUAE, ISO 27001, internal audit, and risk control requirements.

  • Support internal and external audits by providing evidence, reports, and access logs related to secrets usage and privileged access.

  • Maintain clear documentation, SOPs, and governance artifacts.

  Integration & Automation

  • Integrate secrets management with:

  • CI/CD pipelines (DevOps / DevSecOps)

  • Cloud platforms (AWS, Azure)

  • Databases, middleware, and enterprise applications

  • Work closely with DevOps, Cloud, Security Operations, and Application teams to embed secrets securely into delivery pipelines.

  Incident & Change Management

  • Investigate and resolve secrets‑related incidents, access issues, and policy violations.

  • Participate in ITIL change management, including impact analysis, approvals, and controlled deployments.

  • Continuously monitor platform health, access patterns, and anomalous usage.

Desired Candidate Profile

• Technical Skills

  • Hands‑on experience with Secrets Management / PAM platforms (CyberArk preferred).

  • Strong understanding of:

  • Privileged Access Management (PAM)

  • Secrets lifecycle management

  • IAM concepts and access governance

  • Experience working with Linux, Windows, databases, and application service accounts.

  • Exposure to cloud platforms (AWS / Azure) and automation pipelines.

  • Knowledge of SIEM integration, monitoring, and audit logging.

  Governance & Compliance

  • Experience working in banking or regulated environments.

  • Familiarity with security frameworks, audit processes, and risk assessments.

  • Ability to translate security controls into practical, implementable solutions.

  
  

  Qualifications

  • Bachelor’s degree in Information Security, Computer Science, or related field.

  • Relevant certifications preferred:

  • CyberArk (PAM / Secrets Management)

  • Security or IAM certifications (CISSP, CISM, or equivalent – preferred, not mandatory)