Oversee a wide range of critical operational duties, ensuring adherence to established standards and policies while maintaining compliance with regulatory requirements. Monitor day-to-day activities to identify inefficiencies, streamline workflows, and implement corrective measures as necessary. Collaborate with cross-functional teams to align objectives, share insights, and foster a culture of continuous improvement. Prepare detailed reports, analyze performance metrics, and present findings to senior leadership to support data-driven decision-making. Act as a liaison between departments to resolve conflicts, facilitate communication, and enhance operational cohesion. Lead by example, upholding high professional standards and promoting accountability at all levels of the organization.
Oversee and maintain the operational efficiency of Microsoft Entra ID identity services.
Administer user accounts, group configurations, dynamic group assignments, administrative units, role-based access, and directory object management efficiently.
Facilitate various authentication approaches, such as multifactor authentication (MFA), passwordless authentication, and contemporary authentication protocols.
Design, implement, and oversee Conditional Access policies to enforce organizational security compliance and access controls. Ensure these policies are properly configured, continuously monitored, and regularly updated to align with evolving security requirements and business needs.
Provide oversight for identity safeguarding measures, including the assessment and remediation of compromised users and authentication attempts, while ensuring adherence to established security protocols.
Maintain comprehensive documentation for the identity platform, operational procedures, and troubleshooting guides to ensure clarity and accessibility for all stakeholders.
Facilitate enterprise application integrations leveraging SAML, OAuth 2.0, OIDC, and SCIM protocols.
Configure and resolve issues related to Single Sign-On integrations.
Oversee the administration of application registrations, service principals, redirect URIs, API permissions, certificates, and secrets.
Investigate and resolve authentication and authorization challenges, including failed login attempts, token malfunctions, consent discrepancies, redirect loops, and claims mapping irregularities.
Collaborate with application teams to establish secure identity integration patterns.
Facilitate comprehensive identity management for joiners, movers, leavers, contractors, guests, and administrative staff, ensuring seamless integration and adherence to established protocols.
Design, implement, and manage end-to-end lifecycle workflows while ensuring robust provisioning logic remains efficient and scalable.
Facilitate automated user and group provisioning through the utilization of Microsoft Graph, SCIM, and identity governance solutions.
Review and eliminate outdated user accounts, groups, guest access permissions, application assignments, and orphaned access rights to ensure system security and efficiency.
Assist in establishing consistent identity lifecycle management procedures across various platforms and business units.
Conduct access reviews, manage entitlements, oversee access packages, and facilitate approval workflows to ensure compliance and efficiency.
Support privileged access management initiatives by leveraging Microsoft Entra Privileged Identity Management (PIM) to enhance security and operational efficiency.
Monitor privileged roles, standing access, stale assignments, and access drift, documenting findings and reporting anomalies to relevant stakeholders promptly.
Prepare documentation that outlines user, group, application, and role-based access permissions, ensuring clear visibility into assigned privileges.
Gather and compile audit and compliance evidence to support ongoing assessments.
Develop and sustain PowerShell scripts leveraging Microsoft Graph capabilities.
Automate routine identity-related processes, including reporting, validation, and remediation tasks, on a recurring basis.
Automate processes by leveraging Azure Automation, Azure Functions, Logic Apps, or workflows managed through pipelines.
Develop standardized scripts to automate provisioning, cleanup, reporting, access validation, and operational checks, ensuring consistency and efficiency in execution.
Ensure automation code is consistently organized, clearly structured, and thoroughly documented to maintain high standards of clarity and maintainability.
Facilitate identity management for devices configured as Entrained, hybrid-joined, or registered, ensuring seamless integration and security across varied deployment models.
Partner with endpoint management teams to utilize device compliance signals within Conditional Access systems.
Investigate and resolve problems concerning device identity, compliance status, and authentication criteria.
Ensure that device-level access controls are consistent with established identity and security policies.
The ideal candidate will possess a bachelor’s degree in a relevant field, along with a minimum of three years of experience in a comparable role. Strong analytical skills are essential, as is proficiency in industry-specific software and tools. Excellent communication and organizational abilities are required to collaborate effectively with cross-functional teams. The position demands adaptability to evolving business needs and a commitment to continuous learning. A proven track record of driving results and meeting deadlines is expected.
Proficiency in Microsoft Entra ID with a minimum of three years of hands-on professional experience is required.
A Bachelor’s degree in a technical field is mandatory.
A master’s degree is considered a valuable asset.
Applicants should have familiarity working with Microsoft Entra ID, formerly known as Azure Active Directory.
Demonstrates a solid grasp of identity and access management principles and practices.
Individuals applying for this role should possess hands-on experience with Conditional Access policies, Multi-Factor Authentication (MFA) solutions, diverse authentication methodologies, and the deployment of enterprise applications.
Proven expertise in implementing Single Sign-On (SSO) solutions leveraging SAML, OAuth 2.0, or OpenID Connect (OIDC) protocols is required.
Proficiency in managing app registrations, service principals, API permissions, secrets, and certificates is required.
Experienced with creating and maintaining PowerShell scripts is required.
Proficiency in Microsoft Graph API, ranging from foundational to intermediate-level expertise, is required.
Proficient in English with excellent written and verbal communication skills.
Proficient in the local language to ensure clear and effective communication with stakeholders.
Qualifications
BA/BSc/HND , MBA/MSc/MA
Experience Required
3 years
