SailPoint Developer Job Description: TechDemocracy is seeking a talented and experienced SailPoint IIQ Developer to join our growing team in Bangalore. If you are passionate about Identity and Access Management (IAM) and have a strong background in SailPoint implementation and customization, this is the opportunity for you. Key Responsibilities Application Onboarding: Onboard and manage new applications within the SailPoint IdentityIQ (IIQ) framework. Custom Development: Design and develop custom rules, tasks, workflows, and scripts to meet business requirements. Connectors and Integrations: Develop and configure connectors, including webservice connectors, to integrate external systems with SailPoint IIQ. Workflow Management: Customize and optimize workflows to improve identity lifecycle management processes. Troubleshooting: Diagnose and resolve issues related to IAM, SailPoint processes, and integrations. Collaboration: Work closely with cross-functional teams, including IT, business stakeholders, and security teams, to align IAM strategies with organizational goals. Documentation: Create and maintain detailed technical documentation for customizations, workflows, and configurations. Preferred candidate profile Required Skills and Qualifications Experience: Minimum of 4 years in SailPoint IdentityIQ development and implementation. Expertise: Application onboarding in SailPoint IIQ. Developing custom rules, tasks, and workflows. Webservice connectors and other integrations. Technical Skills: Proficiency in Java, XML, and database queries. Problem-Solving: Strong analytical and troubleshooting skills. Teamwork: Ability to work effectively within a team and collaborate with multiple stakeholders. Education: Bachelor's degree in Computer Science, Information Technology, or a related field.
Job Title: Immigration Specialist Job Description: We are seeking an experienced Immigration Specialist to join our team. The primary responsibility of this role is to assist clients in navigating the complex landscape of immigration processes and regulations. The Immigration Specialist will review visa applications, provide legal advice, and ensure compliance with immigration laws. This position requires a detail-oriented professional who can manage multiple cases simultaneously and maintain accurate records. Key Responsibilities: - Advise clients on immigration options and processes, including but not limited to visas, green cards, and citizenship applications. - Prepare and submit immigration applications and petitions to governmental bodies. - Conduct thorough assessments of clients’ eligibility for various immigration benefits. - Stay updated on changes in immigration laws and policies to provide accurate guidance. - Maintain communication with clients to inform them about their case status and gather relevant information. - Collaborate with legal teams, if necessary, to address complex immigration matters. - Provide training and support to other staff on immigration procedures and documentation. Skills and Tools Required: - Strong knowledge of immigration laws and regulations. - Excellent communication and interpersonal skills. - Ability to work efficiently under pressure and manage multiple cases. - Detail-oriented with strong analytical skills. - Proficient in using case management software and legal research tools. - Familiarity with document preparation software and spreadsheets. - Strong organizational skills and ability to maintain accurate records. - A degree in law, international relations, or a related field is preferred, along with relevant certifications in immigration law. Note: Prior experience in immigration law or working with diverse populations is highly valued.
Job Title: Saviynt SME Company Name: Tech Democracy Job Description: We are seeking a Saviynt Subject Matter Expert (SME) to join our dynamic team at Tech Democracy. This role involves working closely with clients to implement and optimize the Saviynt Identity Governance platform. The ideal candidate will possess deep knowledge of Saviynt's capabilities, best practices, and implementation strategies. Responsibilities include providing technical guidance, conducting assessments, leading workshops, and supporting the development of custom solutions to meet client requirements. You will collaborate with cross-functional teams to ensure seamless integration and deliver high-quality outcomes that enhance our clients' identity management and compliance processes. Key Responsibilities: - Serve as the primary expert on Saviynt implementation and configuration. - Conduct client assessments to identify needs and recommend appropriate solutions. - Lead workshops and training sessions for clients and internal teams. - Collaborate with engineering, product management, and security teams to design and implement tailored solutions. - Develop and maintain comprehensive documentation related to Saviynt implementations. - Stay updated on industry trends and best practices related to identity governance and compliance. - Provide ongoing support and troubleshooting for Saviynt applications and integrations. Skills and Tools Required: - Extensive experience with Saviynt Identity Governance platform. - Strong understanding of identity and access management (IAM) principles. - Proficiency in configuring and customizing Saviynt applications. - Knowledge of compliance frameworks such as GDPR, HIPAA, and SOX. - Familiarity with database management and querying languages (e.g., SQL). - Excellent problem-solving and analytical skills. - Strong communication and interpersonal skills, with the ability to work effectively with diverse teams and stakeholders. - Experience with security and risk management principles is a plus. - Familiarity with cloud platforms and integration technologies (e.g., APIs) is beneficial. We welcome innovative thinkers who are passionate about identity governance and eager to contribute to our clients' success. If you are a proactive individual with a strong technical background and a commitment to excellence, we encourage you to apply.
Job Summary: We are seeking an experienced SailPoint IIQ Developer to join our cybersecurity team. The ideal candidate will be responsible for the design, development, implementation, and maintenance of Identity and Access Management (IAM) solutions using SailPoint IdentityIQ. The role involves working closely with business stakeholders, security teams, and IT operations to ensure seamless IAM integration across the organization. Key Responsibilities: Design, develop, configure, and customize SailPoint IdentityIQ solutions to meet business requirements. Implement workflows, rules, policies, and connectors for integrating SailPoint with various enterprise systems. Develop and maintain SailPoint certifications, role management, and provisioning workflows . Perform system integration with directories, databases, and applications for identity lifecycle management. Troubleshoot and resolve SailPoint IIQ-related issues, ensuring smooth system operation. Develop scripts (Java, BeanShell, XML, etc.) to extend and enhance SailPoint functionalities. Work with security and compliance teams to enforce access control policies and regulatory compliance. Provide technical expertise and best practices for IAM implementations. Participate in SailPoint IIQ upgrades, patching, and performance tuning. Collaborate with cross-functional teams to enhance IAM security and operational efficiency. Required Qualifications: 3+ years of hands-on experience with SailPoint IdentityIQ (IIQ) development and implementation. Strong proficiency in Java, BeanShell, XML, REST/SOAP APIs . Experience in customizing and configuring SailPoint workflows, connectors, and rules . Familiarity with IAM concepts such as RBAC, ABAC, SOD, provisioning, and de-provisioning . Strong knowledge of Active Directory, LDAP, SAML, OAuth, SCIM, and database integrations . Experience with cloud IAM integrations (AWS, Azure, GCP) is a plus . Good understanding of regulatory compliance frameworks like SOX, GDPR, HIPAA, NIST, and ISO 27001 . Strong problem-solving skills, analytical mindset, and attention to detail. Ability to work independently and collaboratively in a fast-paced environment. Preferred Qualifications: SailPoint certifications (SailPoint IdentityIQ Engineer or Architect) . Knowledge of CyberArk, Okta, Ping Identity, or other IAM solutions . Experience in DevOps, CI/CD pipelines, and automation scripting is a plus. Why Join TechDemocracy? Industry Leadership: With over 24 years of dedicated experience in identity and access management (IAM) and cybersecurity, TechDemocracy has successfully managed over 15 million user identities and completed more than 600 IDM and cybersecurity implementations. Our strategic partnerships with leading identity giants enable us to deliver superior cybersecurity services, providing employees with opportunities to collaborate with industry thought leaders in IAM. Employee-Centric Culture: We prioritize work-life balance and foster a supportive environment where family emergencies are met with understanding, and teamwork is highly valued. Comprehensive Benefits: Our comprehensive compensation package encompasses extensive health coverage, participation in the Employees' Provident Fund (EPF), and gratuity benefits. Professional Growth: TechDemocracy invests in employee development, empowering individuals to reach their full potential by aligning their interests and skills with the right opportunities. Innovative Environment: Engage in challenging projects that drive the future of cybersecurity, working alongside industry experts in a culture that encourages continuous learning and innovation. Technical Certification Sponsorship – TechDemocracy encourages continuous learning and professional development by sponsoring or reimbursing technical certifications relevant to your role.
Job Title: SailPoint ISC Developer Location: Hyderabad,Mumbai Experience: 5+ years Job Summary: TechDemocracy is seeking a seasoned SailPoint ISC Developer with over 5 years of experience to join our team. The ideal candidate will have a strong background in designing, developing, and implementing identity and access management solutions using the SailPoint IdentityNow platform. This role involves collaborating with cross-functional teams to deliver scalable and efficient identity security solutions that align with business requirements. Key Responsibilities: Design and Development: Architect, develop, test, and deploy SailPoint IdentityNow (IDN) applications utilizing technologies such as LDAP, Active Directory, and various databases. Integration: Collaborate on integrating SailPoint solutions with target systems like Active Directory and databases, ensuring seamless identity management across platforms. Lifecycle Management: Manage the full lifecycle of identity processes, including joiner, mover, and leaver scenarios, to maintain accurate and secure access controls. Scripting and Customization: Develop custom connectors and scripts using Java, BeanShell, and PowerShell to extend SailPoint functionalities and meet specific business requirements. Troubleshooting: Identify and resolve issues within the SailPoint environment, ensuring optimal performance and security compliance. Required Skills and Qualifications: Technical Proficiency: Strong programming skills in Java, BeanShell/JavaScript, JSP/Servlets, and SQL. SailPoint Expertise: In-depth experience with SailPoint IdentityNow (IDN), including API programming and lifecycle management. Integration Experience: Proven ability to integrate SailPoint with various target systems, such as Active Directory and databases. Problem-Solving Skills: Demonstrated aptitude for troubleshooting and resolving complex identity management issues. Communication: Excellent verbal and written communication skills, with the ability to collaborate effectively with cross-functional teams. Why Join TechDemocracy? Industry Leadership: With over 24 years of dedicated experience in identity and access management (IAM) and cybersecurity, TechDemocracy has successfully managed over 15 million user identities and completed more than 600 IDM and cybersecurity implementations. Our strategic partnerships with leading identity giants enable us to deliver superior cybersecurity services, providing employees with opportunities to collaborate with industry thought leaders in IAM. Employee-Centric Culture: We prioritize work-life balance and foster a supportive environment where family emergencies are met with understanding, and teamwork is highly valued. Comprehensive Benefits: Our comprehensive compensation package encompasses extensive health coverage, participation in the Employees' Provident Fund (EPF), and gratuity benefits. Professional Growth: TechDemocracy invests in employee development, empowering individuals to reach their full potential by aligning their interests and skills with the right opportunities. Innovative Environment: Engage in challenging projects that drive the future of cybersecurity, working alongside industry experts in a culture that encourages continuous learning and innovation. Technical Certification Sponsorship TechDemocracy encourages continuous learning and professional development by sponsoring or reimbursing technical certifications relevant to your role.
Job Summary: We are seeking an experienced Okta CIAM Engineer to design, implement, and manage customer identity and access management (CIAM) solutions using Okta. The ideal candidate will have hands-on experience in integrating Okta CIAM with various applications, ensuring secure, seamless, and scalable authentication and authorization processes for external users. Key Responsibilities: Design, configure, and deploy Okta Customer Identity and Access Management (CIAM) solutions. Implement and manage SSO (Single Sign-On), MFA (Multi-Factor Authentication) , and user lifecycle management for customer-facing applications. Develop and maintain custom identity workflows , leveraging Okta APIs, SDKs, and integration tools. Work with OAuth 2.0, OpenID Connect (OIDC), and SAML protocols for authentication and federation. Collaborate with development and security teams to implement secure authentication mechanisms and ensure compliance with organizational standards. Troubleshoot and resolve complex identity, access, and authentication issues. Participate in architecture reviews and recommend improvements for scalability, performance, and security. Maintain proper documentation for configurations, integrations, and best practices. Required Skills & Qualifications: Minimum 7 years of experience in Identity and Access Management (IAM), with at least 3+ years in Okta CIAM . Strong hands-on experience with Okta Workforce and Customer Identity Cloud (Auth0) is a plus. Expertise in authentication, authorization, and federation protocols (OAuth 2.0, OIDC, SAML). Experience in API integrations and custom identity flow development . Knowledge of directory services (AD/LDAP) , RESTful APIs , and JSON-based tokens . Strong troubleshooting and problem-solving skills. Excellent communication and documentation skills.
HashiCorp Vault Engineers (2 positions) Experience: 7+ years Job Description: Expertise in HashiCorp Vault (installation, configuration, upgrades, and integration). Strong knowledge of secrets management, PKI, and secure storage solutions. Experience with cloud platforms (AWS, Azure, or GCP) and containerized environments (Docker/Kubernetes). Hands-on scripting/automation (Python, Ansible, Terraform preferred). Troubleshooting, performance tuning, and implementing best practices for secure vault operations. Role & responsibilities Preferred candidate profile
Position Summary We are seeking a seasoned PingFederate Subject Matter Expert (SME) with over 5 years of hands-on experience in designing, implementing, and managing enterprise identity federation services. The ideal candidate will lead the integration of applications using PingFederate, applying protocols such as SAML 2.0, OAuth2, and OpenID Connect, and ensuring secure and seamless authentication across the enterprise. Key Responsibilities Design, configure, and maintain identity federation solutions using PingFederate. Develop and manage SP/IdP configurations and integrations with internal and external applications. Implement and optimize authentication policies, adapters, and token services. Ensure secure implementation of SAML, OAuth2, and OIDC protocols. Work closely with infrastructure, application, and security teams to support IAM integration projects. Perform system upgrades, patching, and ensure high availability and scalability of PingFederate services. Troubleshoot complex identity and federation issues and provide root cause analysis. Maintain technical documentation and support compliance with internal security policies and regulatory standards. Mentor junior engineers and serve as the go-to expert on PingFederate architecture and functionality. Required Skills and Qualifications Bachelor’s degree in Computer Science, Information Security, or related field. 5+ years of direct experience with PingFederate in enterprise environments. Deep understanding of SAML 2.0, OAuth2, OpenID Connect, and federation concepts. Experience with LDAP, Active Directory, and user attribute mapping. Strong scripting skills (PowerShell, Shell, Python, or Groovy) for automation. Familiarity with high availability and disaster recovery planning for PingFederate. Excellent troubleshooting and debugging skills for identity and access issues. Ability to work remotely and coordinate with global teams effectively. Preferred Skills PingFederate Certification. Familiarity with PingAccess, PingDirectory, or PingOne. Experience with Google Cloud Platform (GCP) identity integrations. Knowledge of DevOps tools and CI/CD pipelines related to IAM. Experience in highly regulated industries (e.g., BFSI, healthcare, telecom). Soft Skills Excellent written and verbal communication skills. Strong analytical and problem-solving ability. Self-driven with the ability to lead IAM initiatives independently. Collaborative mindset and team-oriented approach.
Job Summary: We are seeking an experienced SailPoint Identity Security Cloud (ISC) Subject Matter Expert (SME) to lead the design, implementation, and optimization of SailPoint’s ISC platform. The ideal candidate will have deep expertise in Identity Governance and Administration (IGA), with hands-on experience in SailPoint IdentityNow/ISC, strong architectural and integration skills, and the ability to work with both technical and business stakeholders. Key Responsibilities: Serve as the technical SME for SailPoint ISC solutions across the enterprise. Lead design, development, and deployment of identity lifecycle workflows, access certifications, policies, and connector configurations. Work with stakeholders to define business and technical requirements for identity-related solutions. Integrate SailPoint ISC with various systems (HRMS, AD, Azure AD, cloud services, SaaS apps). Develop and maintain custom connectors and rules using SailPoint’s IdentityNow/ISC framework. Conduct health checks, upgrades, and performance tuning for ISC platform. Mentor junior engineers and provide technical guidance across teams. Ensure compliance with security standards, regulatory requirements, and internal policies. Document architecture, configurations, and operational procedures. Participate in incident response and resolve identity management-related issues. Required Skills & Qualifications: Minimum 8 years of overall experience in Identity and Access Management (IAM). At least 5 years of hands-on experience with SailPoint Identity Security Cloud (ISC)/IdentityNow. Strong understanding of identity lifecycle processes, provisioning, deprovisioning, access requests, and certification campaigns. Experience integrating SailPoint with Active Directory, Azure AD, ServiceNow, Workday, and cloud applications. Proficiency in writing custom rules, connectors, and workflows. Strong knowledge of SCIM, REST APIs, SAML, OAuth, and other IAM protocols. Hands-on scripting experience (e.g., BeanShell, PowerShell, or Java). Familiarity with regulatory frameworks (e.g., SOX, GDPR, HIPAA) as they relate to IAM. Excellent analytical, problem-solving, and communication skills.
Job Summary: We are looking for a skilled HashiCorp Vault Engineer to design, implement, and manage secure secrets management solutions. The role involves maintaining Vault infrastructure, ensuring security compliance, and supporting integrations across cloud and containerized environments. Job Description: Install, configure, upgrade, and integrate HashiCorp Vault. Manage secrets, PKI, and secure storage systems. Work with cloud platforms such as AWS, Azure, or GCP. Deploy and manage Vault in containerized environments (Docker/Kubernetes). Automate processes using Python, Ansible, or Terraform. Troubleshoot issues, perform tuning, and apply security best practices for Vault operations.
We are looking for an experienced Senior SailPoint Identity Security Cloud (ISC) Engineer to lead and support our Identity Governance and Administration (IGA) initiatives. The ideal candidate will possess deep expertise in SailPoint ISC (formerly IdentityNow), strong integration experience across enterprise systems, and the ability to design and implement scalable identity management solutions. This role involves providing technical leadership, mentoring junior engineers, and driving end-to-end identity lifecycle automation. 6–8 years of overall IT experience, with 5+ years experience with SailPoint ISC / IdentityNow . Strong knowledge of IGA concepts – provisioning, access requests, certifications, policy management, and access review. Experience with SailPoint REST APIs , Connector development , and custom workflows . Proficiency in Java, BeanShell scripting, JSON, and XML . Hands-on experience with cloud integrations (Azure, AWS, GCP) and SaaS platforms. Good understanding of authentication & authorization standards – SAML, OAuth, OpenID Connect, SCIM, LDAP. Strong problem-solving skills and ability to work independently on complex issues. Excellent communication, stakeholder management, and documentation skills. Preferred Qualifications: SailPoint Certified Engineer / Identity Security Cloud Professional certification. Experience in migrating from SailPoint IIQ (on-prem) to SailPoint ISC (cloud) .
Job Description: We are looking for experienced Delinea PAM professionals with 4–5 years of hands-on expertise in Windows Server Access Management within cloud environments. Key Responsibilities and Skills: Configure, deploy, and manage Delinea Secret Server and related PAM solutions. Manage and monitor privileged account lifecycle , including provisioning, rotation, and decommissioning. Implement access controls and policy enforcement across hybrid (on-premises and cloud) infrastructures. Integrate PAM solutions with Active Directory and other identity management systems. Utilize PowerShell scripting for automation and operational efficiency. Ensure cloud access governance and compliance with organizational security standards. Collaborate with security and infrastructure teams to strengthen privileged access controls and enhance overall system security
Job Summary: We are seeking an experienced SailPoint IIQ Developer to join our cybersecurity team. The ideal candidate will be responsible for the design, development, implementation, and maintenance of Identity and Access Management (IAM) solutions using SailPoint IdentityIQ. The role involves working closely with business stakeholders, security teams, and IT operations to ensure seamless IAM integration across the organization. Key Responsibilities: Design, develop, configure, and customize SailPoint IdentityIQ solutions to meet business requirements. Implement workflows, rules, policies, and connectors for integrating SailPoint with various enterprise systems. Develop and maintain SailPoint certifications, role management, and provisioning workflows . Perform system integration with directories, databases, and applications for identity lifecycle management. Troubleshoot and resolve SailPoint IIQ-related issues, ensuring smooth system operation. Develop scripts (Java, BeanShell, XML, etc.) to extend and enhance SailPoint functionalities. Work with security and compliance teams to enforce access control policies and regulatory compliance. Provide technical expertise and best practices for IAM implementations. Participate in SailPoint IIQ upgrades, patching, and performance tuning. Collaborate with cross-functional teams to enhance IAM security and operational efficiency. Required Qualifications: 6+ years of hands-on experience with SailPoint IdentityIQ (IIQ) development and implementation. Strong proficiency in Java, BeanShell, XML, REST/SOAP APIs . Experience in customizing and configuring SailPoint workflows, connectors, and rules . Familiarity with IAM concepts such as RBAC, ABAC, SOD, provisioning, and de-provisioning . Strong knowledge of Active Directory, LDAP, SAML, OAuth, SCIM, and database integrations . Experience with cloud IAM integrations (AWS, Azure, GCP) is a plus . Good understanding of regulatory compliance frameworks like SOX, GDPR, HIPAA, NIST, and ISO 27001 . Strong problem-solving skills, analytical mindset, and attention to detail. Ability to work independently and collaboratively in a fast-paced environment. Preferred Qualifications: SailPoint certifications (SailPoint IdentityIQ Engineer or Architect) . Knowledge of CyberArk, Okta, Ping Identity, or other IAM solutions . Experience in DevOps, CI/CD pipelines, and automation scripting is a plus.
Job Summary: We are seeking a skilled SailPoint Identity Security Cloud (ISC) Engineer with 3 to 5 years of experience in Identity and Access Management (IAM). The ideal candidate will have hands-on experience in implementing, configuring, and supporting SailPoint’s cloud-based Identity Security platform. This role requires a strong understanding of identity governance concepts, cloud integrations, and lifecycle management processes. Required Skills and Experience: 3 to 5 years of hands-on experience in SailPoint Identity Security Cloud (ISC) or SailPoint IdentityNow . Strong understanding of Identity Governance and Administration (IGA) concepts — provisioning, certification, access requests, and roles. Proficiency in SailPoint connector configuration and REST APIs for integrations. Experience with Java, BeanShell scripting , and JSON for rule and connector customization. Familiarity with cloud platforms (AWS, Azure, GCP) and SaaS application integrations . Strong troubleshooting and analytical skills. Excellent communication and documentation skills. Preferred Qualifications: SailPoint Identity Security Cloud or IdentityNow certification . Experience migrating from on-prem SailPoint IIQ to ISC .
The Azure IGA Architect is responsible for designing, implementing, and optimizing enterprise-grade identity governance and single sign-on solutions across Microsoft platforms. This role ensures secure, scalable, and automated identity lifecycle management by leveraging Azure Active Directory (Entra ID), Microsoft IGA capabilities, and integration with external applications. The architect collaborates with security, cloud, infrastructure, and application teams to drive modern identity strategies and enforce Zero Trust principles. Key Responsibilities Identity Governance & Administration (IGA) Architect and implement Azure AD / Entra ID Identity Governance solutions, including: Access Reviews Entitlement Management (Access Packages) Privileged Identity Management (PIM) Lifecycle Workflows Define and automate Joiner–Mover–Leaver (JML) processes. Integrate Microsoft Entra with HR systems (Workday, SAP SuccessFactors, Oracle HCM). Build provisioning/deprovisioning workflows using SCIM, Graph API, and custom connectors. Develop RBAC models, role mining, and access standardization across enterprise apps. SSO & Authentication Architect and configure Single Sign-On (SSO) for cloud and on-prem applications using: SAML 2.0 OAuth2.0 / OIDC WS-Federation Integrate apps with Microsoft Entra Enterprise Apps, Conditional Access, and MFA. Optimize user authentication flows with Passwordless, FIDO2, and Certificate-based auth. Drive Zero Trust adoption across identity, endpoints, and applications. Azure AD / Entra ID Architecture Design and manage multi-tenant or hybrid identity environments. Implement Conditional Access, Identity Protection, and Identity Secure Score improvements. Develop governance models for B2B and B2C identities (optional based on org). Design directory synchronization strategies using Azure AD Connect / Cloud Sync. Technical Leadership & Delivery Lead technical workshops, requirement gathering, and architecture sessions. Produce architecture diagrams, HLD/LLD, security assessments, and deployment plans. Guide engineering teams for implementation, testing, and migration. Perform troubleshooting and advanced diagnostics for identity issues. Provide roadmap planning for Entra ID, IGA modernization, and SSO optimization. Required Skills & Experience 12+ years in Identity & Access Management (IAM), with at least 5 years in Microsoft Entra ID. Expertise in: Azure AD / Microsoft Entra ID Identity Governance (IGA) SSO / Federation standards Azure AD PIM, Access Reviews, Lifecycle Workflows Hands-on experience integrating HR systems and SaaS apps via SCIM or Graph API. Strong PowerShell and automation experience. Deep understanding of Zero Trust, RBAC, identity lifecycle, and security best practices. Experience working in enterprise environments with regulatory controls. Preferred Qualifications Microsoft Certifications:
Role Summary The Entra Senior IGA Engineer is responsible for implementing, supporting, and optimizing identity governance solutions using Microsoft Entra ID (Azure AD) . This role focuses on user lifecycle automation, access governance, SSO integrations, and strengthening enterprise identity security. The engineer will work closely with the architecture, security, and application teams to develop & deploy scalable, compliant IGA controls across the organization. Key Responsibilities Identity Governance (IGA) Implement and maintain Microsoft Entra ID Identity Governance components: Access Reviews Privileged Identity Management (PIM) Lifecycle Workflows Entitlement Management (Access Packages) Configure and optimize Joiner–Mover–Leaver (JML) automation. Support integration of HR systems (Workday, SuccessFactors, Oracle HCM) with Entra ID for identity lifecycle. Create and maintain RBAC models, group design, and access policies. Identity Lifecycle & Provisioning Build and maintain provisioning workflows using SCIM , Graph API , and Azure automations. Manage group-based access, dynamic groups, and conditional access assignments. Implement automated deprovisioning to ensure least-privilege access. SSO & Federation Integrate enterprise applications with Entra ID using: SAML OIDC / OAuth2 WS-Fed Configure Conditional Access, MFA, and Passwordless authentication methods. Operations & Security Troubleshoot identity issues, SSO failures, provisioning errors, and access assignment problems. Monitor, report, and remediate identity risks using Identity Protection and Secure Score . Support audit, SOX compliance, and access certification cycles. Maintain detailed documentation (runbooks, configuration guides, SOPs). Technical Delivery Assist architects with HLD/LLD design inputs. Participate in onboarding new applications and services into Entra ID. Collaborate with DevOps and automation teams to streamline identity workflows. Provide L3 support for identity-related incidents. Required Skills & Experience 8-10 years in IAM/IGA engineering roles. Deep hands-on experience with Microsoft Entra ID / Azure AD . Strong practical expertise in: Access Reviews PIM Lifecycle Workflows Access Packages / Entitlement Management Group automation & RBAC Experience with SCIM connectors, Graph API, and PowerShell scripting. Solid understanding of SSO protocols (SAML, OAuth/OIDC). Experience in troubleshooting identity provisioning and SSO issues. Strong understanding of identity security, Zero Trust, and compliance requirements. Preferred Qualifications Microsoft certifications: SC-300 , AZ-104 , MS-100/101 . Experience with Conditional Access, Identity Protection, and Privileged Access strategies. Experience with Azure Automation, Logic Apps, or PowerShell modules for Entra ID. Soft Skills Strong analytical and problem-solving abilities. Excellent communication and documentation skills. Ability to work independently and in cross-functional teams. Detail-oriented with a focus on governance and security.