Sr. Access Management Engineer / Architect (Microsoft Entra ID / Azure AD)

fastest-growing Identity and Access Management (IAM) specialist firms in the U.S.

250+ IAM specialists

talented Access Management Engineers

Key Responsibilities:

• Identity and Access Management (IAM):

• Architect and implement IAM solutions using Microsoft Entra ID (Azure AD), including authentication and authorization solutions such as ADFS, Conditional Access, Passwordless Authentication, and Multi-Factor Authentication (MFA).
• Lead integration efforts for enterprise and SaaS applications using Azure AD for Single Sign-On (SSO), OAuth 2.0, OpenID Connect, and SAML.
• Manage and optimize B2B/B2C solutions for external identity management, ensuring seamless access for customers and partners.
• Implement and manage Azure AD Connect, enabling hybrid identity synchronization between on-premises AD and Azure AD.

• Security Operations:

• Implement Zero Trust architecture and security controls across identities, devices, applications, and data using Microsoft Entra ID, Microsoft Sentinel, and Microsoft Defender suite.
• Manage Privileged Identity Management (PIM) and Azure AD Privileged Access Groups, ensuring least privilege access and governance for highly sensitive roles.
• Configure Conditional Access policies to enforce context-based access controls for enhanced security and compliance.
• Implement and manage role-based access control (RBAC) policies and custom roles within Azure AD for secure access delegation.

• Governance and Compliance:

• Lead identity governance initiatives, including user lifecycle management, identity protection, and audit processes, leveraging tools like Microsoft Purview, PIM, and Access Reviews.
• Support compliance efforts by implementing data protection strategies and DLP (Data Loss Prevention) policies using Microsoft Purview and ensuring alignment with standards such as PCI-DSS, HIPAA, and GDPR.

• Cloud Infrastructure and Integration:

• Support migration projects, such as on-premises Active Directory to Entra ID (Azure AD), ensuring smooth transitions and enhanced security postures.
• Collaborate with other IT teams to integrate Azure AD with third-party services and enhance security using Microsoft Defender for Identity and Endpoint.
• Assist in the management of device enrollments and configurations via Microsoft Intune for endpoint security and mobility management.

• Advanced Troubleshooting and Support:

• Provide Tier 3 support for complex identity and access management issues related to Azure AD, MFA, SSO, and Conditional Access.
• Collaborate with business units, cybersecurity teams, and external partners to troubleshoot and resolve IAM-related challenges.
• Utilize tools like Azure Monitor, Log Analytics, and Microsoft Sentinel to monitor and respond to identity security incidents.