Responsible for overseeing daily operations to ensure efficiency and productivity within the team. Manages project timelines, allocates resources effectively, and monitors progress to meet organizational objectives. Collaborates with cross-functional departments to align strategies and streamline workflows. Maintains compliance with company policies, industry regulations, and quality standards. Identifies opportunities for process improvements and implements innovative solutions to enhance performance. Provides leadership, guidance, and mentorship to team members to foster professional growth and development.
Oversee and maintain the Microsoft Entra ID identity services infrastructure, ensuring seamless operation and robust security measures are in place. Provide continuous support to users and stakeholders, while troubleshooting any issues that may arise to minimize downtime and enhance system reliability.
Administer user accounts, group memberships, dynamic groups, administrative units, assigned roles, and various directory objects within the system.
Facilitate the implementation and management of authentication solutions such as Multi-Factor Authentication (MFA), passwordless authentication, and modern authentication protocols.
Design, implement, and oversee Conditional Access policies to enforce security controls and access management across the environment.
Provide assistance for safeguarding identities, identifying high-risk users and sign-ins, and implementing associated remediation measures to mitigate potential security threats.
Responsibilities include updating and managing documentation for the identity platform, as well as operational procedures and troubleshooting guides to ensure accuracy and accessibility.
Facilitate the integration of enterprise applications through the implementation of SAML, OAuth 2.0, OIDC, and SCIM protocols.
Configure and resolve issues related to Single Sign-On integrations.
Responsibilities include overseeing app registrations, managing service principals, configuring redirect URIs, assigning API permissions, and handling certificates and secrets securely.
Investigate and resolve authentication and authorization challenges, including failed login attempts, token malfunctions, consent discrepancies, redirect loop errors, and issues with claims mapping.
Collaborate with application teams to establish secure identity integration patterns.
Facilitate the identity management processes for joiners, movers, leavers, contractors, guests, and administrative personnel.
Design, develop, and oversee lifecycle workflows while ensuring robust provisioning logic remains operational and efficient.
Leverage Microsoft Graph, SCIM, and identity governance solutions to automate the provisioning and management of users and groups efficiently.
Identify and remove outdated user accounts, group memberships, guest access, application assignments, and unlinked permissions to ensure system security and integrity.
Assist in establishing uniform identity lifecycle management procedures across various platforms and organizational divisions.
Facilitate the management of access reviews, entitlement governance, access packages, and approval workflows to ensure efficient and secure operations.
Support the management of privileged access through the utilization of Microsoft Entra Privileged Identity Management (PIM).
Monitor privileged roles, standing access, stale assignments, and access drift, and ensure timely reporting on each of these areas.
Develop comprehensive reports detailing user, group, application, and role-based access permissions.
Assist in gathering audit and compliance evidence to ensure adherence to regulatory standards and organizational policies.
Develop and sustain PowerShell scripts leveraging Microsoft Graph to ensure efficient automation and seamless integration with Microsoft 365 services.
Automate routine identity processes, including reporting, validation, and remediation tasks.
Facilitate automated processes by leveraging Azure Automation, Azure Functions, Logic Apps, or workflows structured within pipelines.
Develop standardized scripts to automate the processes of provisioning, cleanup, reporting, access validation, and operational checks, ensuring consistency and repeatability in execution.
Maintain automation code in a structured and well-documented manner to ensure clarity and efficiency.
Facilitate device identity scenarios encompassing Entrained, hybrid-joined, and registered device configurations.
Work alongside endpoint management teams to analyze and utilize device compliance signals for Conditional Access policies.
Investigate and resolve issues pertaining to device identity authentication, compliance status verification, and access authorization requirements.
Verify that device-level access controls are in compliance with established identity and security protocols.
Qualifications
Requires a minimum of three years of hands-on experience administering Microsoft Entra ID in a professional setting.
A Bachelor’s degree in a technical field is mandatory.
A master’s degree is desirable.
Proficiency in Microsoft Entra ID, formerly known as Azure Active Directory, is required.
Possesses a solid grasp of identity and access management principles.
Proficiency in Conditional Access, Multi-Factor Authentication (MFA), various authentication methodologies, and the deployment and management of enterprise applications is required.
Proven expertise in implementing Single Sign-On (SSO) solutions through protocols such as Security Assertion Markup Language (SAML), OAuth 2.0, or OpenID Connect (OIDC) is required.
Proficiency in managing app registrations, service principals, API permissions, secrets, and certificates is required.
Experienced in developing and executing PowerShell scripts is required.
Proficiency in Microsoft Graph API at a fundamental to intermediate level is required.
Proficient in English with excellent verbal and written communication skills.
Proficient in the native language of the region.
Qualifications
BA/BSc/HND , MBA/MSc/MA
Experience Required
3 years
