IAM Consultant
IAM Consultant
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
8 Years of Technical IAM Domain experience with minimum 5 years of experience in Microsoft Azure Identity Platform.
Includes ability to delegate more routine tasks to other team members to support overall delivery plus ability to work closely with the Product Owners Stakeholders Digital Security Identity Architects and Business Analyst on process design.
Responsibilities:
o Design deploy configure and administer Azure IDAM services to meet the organization's requirements.
o Good understanding of an organization’s security policies and Identity strategies
o Handson experience on deploying multifactor authentication (MFA) solutions and conditional access policies.
o Perform the gap analysis in Identity Governance processes.
o Monitor Azure AD services investigate and resolve any issues related to user authentication access permissions and directory synchronization.
o Perform regular security assessments and identifying and mitigating any vulnerabilities or risks.
o Good knowledge of Azure B2B collaboration multitenant organizations Cross tenant Synchronization Security trust policies between organizations
o Hands on experience on SSO standards/protocols
o Hands on experience on AWS Identity center
o Collaborate with business stakeholders to integrate Azure AD with other systems applications and identity providers.
o Provide technical guidance and support to endusers troubleshooting any Azure ADrelated issues and incidents.
o Stay up to date with the latest Azure AD features security best practices and industry trends and make recommendations for improvements.
o Good Knowledge of IGA
o Document Azure AD configurations processes and procedures ensuring that knowledge is effectively shared within the team.
Mandatory Requirements:
Good experience in designing implementing and managing Azure IDAM services.
Strong experience of Azure AD security features including Conditional Access Identity protection (User risk and sign in risk policies and investigation & remediation of risky users) and MFA (Multifactor Authentication)
Experience in API development with C# PowerShell
Proven experience and solid understanding of FIDO2 OAuth SAML and LDAP
Experience in Rolebased access control implementation
Good Understanding of threat Handling
o Identification
o Identify Attack Patterns
o Identify false positives
o Prevention
o Perform proactive & reactive measures in response to Incidents/Threats
Understanding of Onprem active directory (additional)
Understanding of authentication protocols (e.g. OAuth OpenID Connect SAML) and knowledge across Azure AD SSO onboardings (SAML OAuth/OIDC)
Understanding of Azure AD Connect and directory synchronization. (additional)
Good knowledge of PowerShell scripting for Azure AD automation and management.
Strong problemsolving skills and the ability to troubleshoot and resolve complex Azure AD issues.
Excellent communication and collaboration skills with the ability to work effectively in crossfunctional teams.
Desirable:
Troubleshooting and reporting via Azure AD sign in logs required. Log analytics/Azure Monitor querying experience desirable.
Graph API basic knowledge and overview will be a bonus experience with any similar management API could also be considered.
Participate in deep dive discussions/workshops with Microsoft Product Groups
o Eg. Azure Identity Protection deepdive and feedback session
Testing
• Testing of new Microsoft features and private preview feedback when applicable
o One time passcode for B2B users
o SSPR/MFA Converged Registration Experience
o SSPR Reporting
Employment Type
Full Time
