Job
Description
Role & responsibilities Identity & Access Management (IAM) Administration Manage user and group identities in Microsoft Entra ID (formerly Azure AD). Configure and maintain Role-Based Access Control (RBAC), Dynamic Groups, and Access Reviews. Implement Privileged Identity Management (PIM) for Just-In-Time (JIT) admin access. 2. Security & Compliance Enforce Multi-Factor Authentication (MFA) and Conditional Access policies. Monitor and respond to identity-related security threats using Microsoft Defender for Identity & Entra ID Protection. Ensure compliance with ISO 27001, NIST, GDPR, HIPAA, and other regulations. 3. Hybrid Identity Management Maintain Microsoft Entra Connect (formerly Azure AD Connect) for seamless on-prem to cloud synchronization. Troubleshoot authentication issues related to SSO, AD FS, Password Hash Sync (PHS), and Pass-Through Authentication (PTA). Support identity federation with SAML, OAuth, and OpenID Connect for third-party applications. 4. Incident Management & Troubleshooting Resolve user login failures, access issues, and synchronization errors. Analyze audit logs, sign-in logs, and security reports to detect anomalies. Work with Microsoft Premier Support for high-priority issue resolution. 5. Automation & Optimization Develop and maintain PowerShell scripts and Microsoft Graph API integrations for IAM automation. Implement self-service password reset (SSPR) and access request workflows to reduce IT workload. Optimize Conditional Access policies to balance security and user experience. 6. Application & Infrastructure Integration Manage SSO configurations for Microsoft 365, Azure, and third-party SaaS applications. Support integration with on-prem AD, cloud workloads, and hybrid environments. Ensure smooth onboarding of new applications with identity-based security policies. Preferred candidate profile You should have a technology degree followed by 10 to 14 years of experience in the IAM domain with experience in Entra ID/Azure AD. You must have strong experience of Microsoft Entra ID (Identity and Access Management), authentication standards and technologies, such as SAML2.0, OAuth2.0, OpenID Connect, Multifactor Authentication, Adaptive Authentication, Risk-based Authentication, Passwordless Authentication, Certificate-based authentication, Kerberos Authentication etc, and cloud-based IAM solutions. You must have experience with Windows and Linux/Unix operating systems, as well as scripting languages (Bash, PowerShell, or Perl), SQL, and web services. You must have strong written and verbal communication skills. You should be able to create and maintain clear documentation of project requirements, design elements, and updates throughout the project lifecycle. Knowledge of a few or all the following programming languages such as Java/J2EE, HTML, JavaScript, JSP/Servlets, Python, Shell Script and SQL is good to have. You should have basic familiarity with emerging technologies in the industry. You should be able to build strong relationships with clients, sponsors, vendors, and team members to support cohesive and productive teamwork. Experience with other Access Management products such as Ping Identity, Okta, ForgeRock etc is a plus. Experience with Microsoft Entra ID Governance is a plus. If Interested, Please mail me at vandita.sharma@sdgc.com
