Specialist - Identity & Access

Overview

Space42 (ADX: SPACE42) is a UAE-based AI-powered SpaceTech company that integrates satellite communications, geospatial analytics and artificial intelligence capabilities to enlighten the Earth from space. Established in 2024 following the successful merger between Bayanat and Yahsat, Space42’s global reach allows it to address the rapidly evolving needs of its customers in governments, enterprises, and communities. Space42 comprises of two business units: Yahsat Space Services and Bayanat Smart Solutions. The Yahsat Space Services unit focuses on upstream satellite operations for both fixed and mobility satellite solutions. The Bayanat Smart Solutions unit integrates geospatial data acquisition and processing with AI to inform decision-making, enhance situational awareness, and improve operational efficiency. Space42’s major shareholders include G42, Mubadala and IHC.

Our vision is to pioneer beyond today for humanity to experience a better tomorrow. Space42 challenges traditional approaches with advanced AI and cutting-edge satellite technology, making space more accessible and redefining how data from space can be used on Earth. We aim to achieve this by connecting people to rewire potential, informing decisions to reimagine impact and enabling action to redefine tomorrow. We are guided by our core principles; we have foresight and are reshaping the status quo with a view of the future and beyond; we fuel change by going beyond words, rolling up our sleeves and building things that have never been built before; we bring our finest to go beyond good, to bring the best in class in every offering through our people, partners and providers.

For more information, visit www.space42.ai; follow us on X @Space42ai, Instagram @Space42ai

ROLE PURPOSE

The purpose of this role is to implement and manage identity lifecycle processes and governance across Space42’s IT, AI, and satellite environments, ensuring secure provisioning, deprovisioning, and role-based access control (RBAC). This includes enforcing Zero Trust principles by overseeing authentication mechanisms such as Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Conditional Access for all users and services. Additionally, the role will involve implementing process and governance for maintaining Privileged Access Management (PAM) solutions to enforce least privilege access and secure administrative credentials. Furthermore, the role will ensure effective Key Management Governance, overseeing the proper handling, storage, and rotation of cryptographic keys to safeguard sensitive data and maintain compliance with industry security standards.

Responsibilities

Identity and Access Management

• Develop and implement comprehensive Access Control Frameworks that define clear roles, responsibilities, and access policies within the organization ensuring least privilege, separation of duties (SoD), and role-based access control (RBAC).
• Define, implement, and enforce identity governance policies, including periodic access reviews and certifications to ensure compliance with regulatory and business requirements
• Ensure that all user access requests are validated, reviewed, and granted in accordance with defined policies and roles.
• Enforce Zero Trust security principles by managing authentication mechanisms, including Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Conditional Access for all users and services.
• Continuously monitor and update authentication policies to align with evolving security threats and best practices.
• Work with IT and security teams to ensure that authentication systems are fully integrated and functional across all platforms.
• Regularly review and audit privileged access accounts to minimize risks related to insider threats and unauthorized access.
• Collaborate with internal teams to ensure that privileged access is appropriately granted, monitored, and revoked.
• Conduct periodic access reviews to ensure that users and services have the appropriate level of access based on their roles.
• Produce regular reports on access control activities, including user provisioning, deprovisioning, and audits of privileged access.

Key Management:

• Establish and enforce policies for the secure management of cryptographic keys, ensuring their appropriate generation, storage, rotation, and access controls.
• Regularly review key management practices to ensure compliance with security standards, regulatory requirements, and internal policies.
• Monitor key lifecycle events and ensure that key management solutions are effectively implemented and maintained to protect sensitive data.
• Work with internal stakeholders to ensure alignment of key management governance with broader security frameworks and compliance objectives.

Qualifications

• 3+ years in IAM, PAM, and authentication security.
• Strong understanding of AD, Azure AD, SSO, MFA, SAML, OAuth, OpenID Connect.
• Hands-on experience with IAM/PAM Solutions.
• Knowledge of Zero Trust security, cloud identity, and compliance frameworks (NIST, ISO 27001, CIS).
• Strong knowledge of security frameworks/standard (e.g., NIST, ISO 27001) and regulatory requirements (e.g., UAE IA, KSA CRF, GDPR, UAE PDPL etc.).
• Relevant certifications such as ISO 27001 LA/LI, CISSP, CISA, CISM, CRISC, or equivalent is highly preferred.
• Experience conducting risk assessments or audits.
• Excellent communication skills, with the ability to interact with both technical and non-technical stakeholders.
• Excellent Data analytical skills