Job Title: Microsoft Entra (Azure AD) Engineer
Location: Malaysia
Experience: 712 Years
Note: Candidates who are shortlisted will be required to work from the Hyderabad office for the initial few months before relocating to Malaysia.
Summary
Microsoft Entra Architect Identity, Governance & Security
Responsible for enterprise-wide Microsoft Entra (Azure AD) architecture and governance, covering Identity Governance & Administration (IGA), SSO, B2B external collaboration, HR-driven user provisioning, and security controls like MFA, SSPR, password policies, and Entra ID Protection.
Required Skills & Experience
- 8+ years in Identity & Access Management with 35 years in Entra architecture.
- Design and maintain full Microsoft Entra architecture and roadmap (cloud and hybrid).
- Implement Entra ID Governance: Entitlement Management, Access Reviews, Lifecycle Workflows, and Privileged Identity Management (PIM).
- Integrate HR systems (e.g., SAP SuccessFactors, Workday) for automated JoinerMoverLeaver provisioning.
- Lead SSO strategy using SAML, OAuth, OIDC, and WS-Fed and onboard enterprise applications.
- Architect B2B external collaboration with guest lifecycle, Conditional Access, and external identity governance.
- Configure and manage MFA, Self-Service Password Reset (SSPR), password protection, and Entra ID Protection for risk-based policies.
- Automate provisioning, reporting, and monitoring using PowerShell and Microsoft Graph API.
- Align identity solutions with Zero Trust, compliance standards, and cross-functional team requirements.
- Deep expertise in Microsoft Entra ID and Entra ID Governance.
- Hands-on experience with MFA, SSPR, password policy design, and Entra ID Protection.
- Strong knowledge of SSO protocols and application federation.
- Experience integrating HRIS platforms for automated provisioning and write-back.
- PowerShell and Microsoft Graph API automation skills.
- Understanding of Zero Trust and modern identity security frameworks.
- Preferred certifications: SC-300, SC-100, AZ-305.
