Regional Engineer, Identity & Access Management (IAM)

Position Responsibilities

Microsoft ft Entra ID & SSO Implementation

• Design and implement Single Sign-On (SSO) integrations using Microsoft ft Entra ID
• Configure authentication protocols including: SAML 2.0, OAuth 2.0, OpenID Connect (OIDC)
• Integrate enterprise and SaaS applications with Entra ID Enterprise Applications
• Configure App Registrations, Service Principals, and API permission

Identity Lifecycle Management

• Implement automated user provisioning and deprovisioning
• Integrate identity management with: HR systems, internal platforms, third-party SaaS
• Manage RBAC and group-based access control

Security & Access Governance

• Implement and maintain Conditional Access policies
• Deploy Multi-Factor Authentication (MFAFA) strategies Support Zero Trust architecture initiatives
• Monitor identity risks and enforce Identity Protection policies

Application Integration & Federation

• Integrate external and internal systems with Entra IDSupport B2B / B2C identity fefederation
• Configure SCIM provisioning for SaaS applications
• Work with development teams to implement secure authentication flows

Monitoring, Troubleshooting & Compliance

• Monitor authentication logs and identity activity
• Troubleshoot SSO and authentication issues
• Support compliance initiatives related to: ISO 27001, SOC2, GDPR
• Maintain documentation for identity architecture and integration processes

Collaboration with Engineering & Security Teams

• Partner with: IT Infrastructure teams, Application developers, Cybersecurity teams
• Provide guidance on secure identity design and authentication patterns

Qualification and Experience

Technical Skills

• 3+ years experience in Identity & Access Management
• Hands-on experience with Microsoft ft Entra ID / Azure AD
• Experience implementing SSO fofor enterprise applications
• Strong understanding of: SAML, OAuth 2.0, OpenID Connect, SCIM provisioning

Infrastructure & Cloud

• Experience working with: Microsoft ft 365, Azure, Cloud SaaS identity integrations
• Familiarity with Zero Trust security principles

Security Knowledge

• Knowledge of: Identity governance, Conditional access, MFA FA implementation, Privileged identity management (PIM)

Preferred Qualifications

• Microsoft ft certifications such as: SC-300: Microsoft Identity and Access Administrator, AZ-104
• Experience with: Identity federation (ADFS, Okta, Ping), Hybrid identity environments, LDAP / Active Directory integration
• Experience implementing Identity Governance or IGA tools

a Necessity, not a Luxury