Sr Technical Lead-Cybersecurity

Area(s) of responsibility

We are seeking a highly experienced and technically proficient Identity and Access Management (IAM) Engineer to lead the design, implementation, and optimization of identity lifecycle management solutions across Microsoft Entra ID (Azure AD) and on-premises environments. The ideal candidate will have hands-on expertise in Joiner/Mover/Leaver (JML) use-case automation, SSO integrations using SAML, OAuth, and Form-based authentication, and a deep understanding of identity governance and access control mechanisms

Key Responsibilities

• Identity Lifecycle Management (JML):
• Design, implement, and maintain Joiner-Mover-Leaver workflows in Entra ID and on-premise IAM solutions.
• Capture business use cases and define feasibility plans for automation.
• Design transition roadmap using Microsoft technologies with risk mitigation strategies.
• Automate provisioning and deprovisioning processes for applications, AD, and cloud resources.
• Integrate with HR systems (e.g., SuccessFactors) to trigger provisioning/de-provisioning actions.
• Configure access packages, group memberships, license assignments, and account disablement.
• Ensure compliance with security and regulatory standards for identity lifecycle processes.
• Capture business use cases and define feasibility plans for automation.
• Design transition roadmap using Microsoft technologies with risk mitigation strategies.
• Recommend integration strategies using Azure AD B2B or other suitable approaches.
• Strong experience in Microsoft 365, Azure AD, and IAM solutions.
• Expertise in cross-tenant collaboration and hybrid identity setups.
• Familiarity with Teams Guest Access, SharePoint Online External Sharing, and application integration.
• Excellent stakeholder engagement and documentation skills.
• Single Sign-On (SSO) Implementation:
• Feasibility assessment of applications for EntraID integration.
• Configure and manage SSO integrations for enterprise and cloud applications using SAML, OAuth 2.0, OIDC, and Form-based authentication.
• Develop federation and trust relationships between identity providers and service providers.
• Customize claims, configure conditional access, and enforce MFA policies.
• Lead application onboarding and federation setup across cloud and on-prem platforms.
• Troubleshoot and resolve authentication/authorization issues across hybrid environments.
• Access Management & Governance:
• Implement and maintain role-based access control (RBAC) and attribute-based access control (ABAC).
• Support periodic access reviews, certification campaigns, and compliance audits.
• Enforce least privilege principles and strong authentication mechanisms (MFA, conditional access).
• Technical Leadership & Support:
• Collaborate with security architects, application owners, and stakeholders to design secure IAM solutions.
• Develop automation scripts using PowerShell, Graph API, or other scripting tools.
• Provide guidance on IAM standards, policies, and best practices.
• Lead troubleshooting efforts for complex identity-related issues across cloud and on-prem platforms.
• Documentation & Stakeholder Engagement:
• Create detailed design documents, SOPs, and implementation guides.
• Liaise with application owners, security teams, and business stakeholders to align IAM strategies.