Oversee daily operations to ensure alignment with organizational goals, managing a team of professionals to drive productivity and efficiency. Develop and implement strategic plans and policies that enhance performance and foster a collaborative work environment. Monitor progress through regular assessments and provide constructive feedback to support continuous improvement. Collaborate with cross-functional departments to streamline processes and achieve shared objectives. Ensure compliance with industry regulations and internal standards while maintaining high ethical and quality benchmarks. Serve as a primary liaison with stakeholders, addressing concerns and facilitating transparent communication.
Oversee and maintain Microsoft Entra ID identity services to ensure seamless operational functionality. Provide strategic guidance and technical support to optimize identity management processes and enhance system performance.
Oversee the management of users, groups, dynamic groups, administrative units, roles, and directory objects to ensure efficient directory administration and security compliance.
Facilitate robust authentication mechanisms, encompassing multifactor authentication (MFA), passwordless authentication protocols, and contemporary authentication frameworks.
Design, implement, and oversee Conditional Access policies to ensure robust security controls are in place. Manage and refine these policies to align with organizational security requirements and compliance standards.
Support identity protection initiatives by identifying and addressing risky users and risky sign-ins, as well as implementing effective remediation processes for such incidents.
Oversee the upkeep of identity platform documentation, operational workflows, and troubleshooting manuals to ensure accuracy and accessibility for all stakeholders.
Facilitate enterprise application integrations through the implementation of SAML, OAuth 2.0, OpenID Connect (OIDC), and System for Cross-domain Identity Management (SCIM) protocols.
Configure and resolve issues related to Single Sign-On integrations, ensuring seamless authentication and access management across systems. Diagnose and address technical challenges to maintain optimal performance and security of the SSO infrastructure, while adhering to best practices for integration and user experience.
Oversee the administration of app registrations, service principals, redirect URIs, API permissions, certificates, and secrets.
Investigate and resolve authentication and authorization challenges, including unsuccessful sign-in attempts, token malfunctions, consent discrepancies, redirect cycle failures, and claims mapping discrepancies.
Collaborate with application teams to establish secure identity integration patterns.
Assist in the administration of identity processes for joiners, movers, leavers, contractors, guests, and administrative staff.
Develop and oversee lifecycle workflows and provisioning logic to ensure seamless operational processes.
Leverage Microsoft Graph, SCIM, and identity governance solutions to automate user and group provisioning processes efficiently.
Review and eliminate outdated user accounts, group memberships, guest access permissions, application assignments, and any access rights associated with abandoned or inactive accounts.
Assist in establishing consistent identity lifecycle management practices across various platforms and organizational units.
Assist in conducting access reviews, managing entitlements, administering access packages, and streamlining approval workflows.
Provide support for privileged access management through Microsoft Entra Privileged Identity Management (PIM).
Monitor privileged roles, standing access, stale assignments, and access drift, ensuring accurate documentation and timely reporting of all findings.
Generate documentation that outlines access permissions for individual users, groups, applications, and roles.
Gather and compile evidence to support audit and compliance initiatives.
Develop and sustain PowerShell scripts utilizing Microsoft Graph capabilities to ensure seamless automation and integration.
Automate routine identity-related operations, including reporting, validation, and remediation tasks, ensuring efficiency and consistency in recurring processes.
Facilitate automation through the utilization of Azure Automation, Azure Functions, Logic Apps, or workflows driven by pipelines.
Develop standardized scripts to automate the provisioning, cleanup, reporting, access validation, and operational verification processes.
Ensure automation code is maintained in a well-structured and thoroughly documented manner.
Facilitate identity management for devices integrated with Entry, including those in hybrid-joined and registered configurations.
Partner with endpoint management teams to leverage device compliance signals for Conditional Access policies.
Investigate and resolve problems related to device identification, compliance status, and authentication criteria.
Ensure that device-based access controls are consistently aligned with established identity and security policies.
Seeking candidates with a Bachelor’s degree in a related field, or equivalent experience, along with a minimum of three years in a relevant role. Proficiency in industry-standard software and tools is essential, along with strong analytical and problem-solving abilities. Excellent communication and organizational skills are required to collaborate effectively and manage multiple priorities. Knowledge of best practices, regulations, and compliance standards in the field is highly desirable. The ability to work independently and adapt to dynamic environments is crucial for success in this position.
A minimum of three years of hands-on experience with Microsoft Entra ID is required.
A Bachelor’s degree in a technical field is mandatory for this position.
A master’s degree is considered an asset for this role.
Candidates should possess hands-on experience with Microsoft Entra ID, formerly known as Azure Active Directory.
Possesses a solid comprehension of identity and access management principles.
Proficiency in Conditional Access, Multi-Factor Authentication (MFA), authentication protocols, and enterprise application integration is required.
Proficiency in implementing Single Sign-On (SSO) solutions via SAML, OAuth 2.0, or OpenID Connect (OIDC) is required.
Proficiency in configuring app registrations, managing service principals, assigning API permissions, and handling secrets and certificates is required.
Proficient in developing and executing PowerShell scripts to automate tasks, manage systems, and streamline operations. Skilled in leveraging PowerShell for configuration management, data manipulation, and system administration. Capable of writing, debugging, and optimizing scripts to enhance efficiency and productivity in IT environments.
Proficiency in Microsoft Graph API, ranging from fundamental to intermediate skill levels, is required.
Proficient in English, both written and verbal communication is essential. Strong command of the English language is required.
Proficient in spoken and written fluency of the native language.
Qualifications
BA/BSc/HND , MBA/MSc/MA
Experience Required
3 years
