Senior Technical Lead

About Birlasoft:

Birlasoft is a global technology company enabling “next-generation” digital transformation through expertise in Cloud, AI, Data, and enterprise solutions. Combining industry proficiency with advanced digital capabilities, it helps businesses accelerate change with speed, scale, and purpose, delivering “future-ready” solutions that enhance agility, resilience, and customer experience. Part of the CKA Birla Group and led by Chairman Mrs. Amita Birla, Birlasoft’s nearly 12,000 professionals drive innovation while building a diverse, inclusive, and learning-oriented culture. With a strong focus on sustainability and long-term value creation, Birlasoft transforms enterprises and communities, earning its reputation as a trusted partner and one of the best places to work

About the Job :

Title:

Job Location:

Educational Background:

Key Responsibilities:

Identity Lifecycle Management (JML):

• Design, implement, and maintain

  Joiner-Mover-Leaver workflows

  in Entra ID and on-premise IAM solutions.
• Capture business use cases and define feasibility plans for automation.
• Design transition roadmap using Microsoft technologies with risk mitigation strategies.
• Automate provisioning and deprovisioning processes for applications, AD, and cloud resources.
• Integrate with HR systems (e.g., SuccessFactors) to trigger provisioning/de-provisioning actions.
• Configure access packages, group memberships, license assignments, and account disablement.
• Ensure compliance with security and regulatory standards for identity lifecycle processes.
• Capture business use cases and define feasibility plans for automation.
• Design transition roadmap using Microsoft technologies with risk mitigation strategies.
• Recommend integration strategies using Azure AD B2B or other suitable approaches.
• Strong experience in Microsoft 365, Azure AD, and IAM solutions.
• Expertise in cross-tenant collaboration and hybrid identity setups.
• Familiarity with Teams Guest Access, SharePoint Online External Sharing, and application integration.
• Excellent stakeholder engagement and documentation skills.

Single Sign-On (SSO) Implementation:

• Feasibility assessment of applications for EntraID integration.
• Configure and manage SSO integrations for enterprise and cloud applications using

  SAML, OAuth 2.0, OIDC, and Form-based authentication

  .
• Develop federation and trust relationships between identity providers and service providers.
• Customize claims, configure conditional access, and enforce MFA policies.
• Lead application onboarding and federation setup across cloud and on-prem platforms.
• Troubleshoot and resolve authentication/authorization issues across hybrid environments.

Access Management & Governance:

• Implement and maintain role-based access control (RBAC) and attribute-based access control (ABAC).
• Support periodic access reviews, certification campaigns, and compliance audits.
• Enforce

  least privilege principles

  and strong authentication mechanisms (MFA, conditional access).

Technical Leadership & Support:

• Collaborate with security architects, application owners, and stakeholders to design secure IAM solutions.
• Develop automation scripts using

  PowerShell

  ,

  Graph API

  , or other scripting tools.
• Provide guidance on IAM standards, policies, and best practices.
• Lead troubleshooting efforts for complex identity-related issues across cloud and on-prem platforms.

Documentation & Stakeholder Engagement:

• Create detailed design documents, SOPs, and implementation guides.
• Liaise with application owners, security teams, and business stakeholders to align IAM strategies.
• .

Skills Required:

Core IAM Expertise

• 8+ years of hands-on experience in IAM domain with a focus on

  JML processes

  .
• Strong experience with

  Microsoft Entra ID (Azure AD)

  and

  Active Directory

  (on-prem).
• Proven implementation knowledge of

  SSO protocols

  – SAML 2.0, OAuth 2.0, OpenID Connect, WS-Fed, Form-based authentication.

Technical Skills:

• Experience with

  PowerShell, Python, or other scripting languages

  for IAM automation.
• Knowledge of

  SCIM, LDAP, Kerberos, PKI, Conditional Access policies

  .
• Experience with IAM tools such as

  SailPoint

  ,

  Okta

  ,

  CyberArk

  , or

  OneIdentity

  is a plus.
• Understanding of

  Zero Trust principles

  and modern identity security models.
• Familiarity with directory services (LDAP, ADFS) and cloud identity solutions.

Soft Skills:

• Strong analytical, problem-solving, and troubleshooting skills.
• Excellent communication and stakeholder management abilities.
• Ability to work independently and collaboratively in a fast-paced environment.

Preferred Certifications (nice to have)

• Microsoft Certified:

  Identity and Access Administrator Associate

• Microsoft Certified:

  Cybersecurity Architect Expert

• Certified Identity and Access Manager (CIAM)