Oversee and manage day-to-day operations to ensure efficiency and productivity, while adhering to established policies and procedures. Develop and implement strategies to enhance workflow, streamline processes, and drive continuous improvement across departments. Monitor performance metrics, analyze data, and provide actionable insights to support informed decision-making. Foster a collaborative work environment by leading cross-functional teams, delegating tasks, and promoting accountability. Ensure compliance with industry regulations, safety standards, and organizational guidelines. Serve as a key liaison between senior management and employees, facilitating clear communication and alignment with company objectives.
Oversee the administration and maintenance of Microsoft Entra ID identity services to ensure seamless operation and security.
Administer users, groups, dynamic groups, administrative units, roles, and all directory objects effectively.
Support a range of authentication methods, such as multifactor authentication (MFA), passwordless authentication, and modern authentication protocols, to ensure secure and seamless access for users.
Design, implement, and oversee Conditional Access policies to enforce secure access controls across the organization’s digital infrastructure.
Provide oversight for identity safeguarding measures, including the identification and mitigation of potential security threats associated with user accounts, suspicious authentication attempts, and related corrective actions.
Responsible for creating, updating, and preserving identity platform documentation, operational procedures, and troubleshooting guides.
Leverage expertise in enterprise application integrations by implementing SAML, OAuth 2.0, OIDC, and SCIM protocols to ensure seamless connectivity and data synchronization across systems.
Design, implement, and resolve issues with Single Sign-On integrations as part of daily operational tasks.
Oversee the administration of application registrations, service principals, redirect URIs, API permissions, certificates, and secrets.
Investigate and resolve authentication and authorization failures, including incidents of unsuccessful sign-ins, token malfunctions, consent-related complications, redirect loops, and claims mapping discrepancies.
Collaborate closely with application teams to establish standardized, secure identity integration methodologies and best practices.
Facilitate the full spectrum of identity management processes, including those for joiners, movers, leavers, contractors, guests, and administrative staff.
Develop and sustain lifecycle workflows and provisioning logic to ensure efficient and effective system operations.
Facilitate automated user and group provisioning through Microsoft Graph, SCIM, and identity governance solutions.
Identify and remove inactive users, groups, guests, application assignments, and unused access permissions to ensure system security and efficiency.
Assist in establishing consistent identity lifecycle processes across various platforms and business units.
Facilitate the execution of access reviews, entitlement management initiatives, access package deployments, and approval workflows to ensure operational efficiency and compliance adherence.
Provide support for privileged access management through the utilization of Microsoft Entra Privileged Identity Management (PIM) to enhance security and operational efficiency.
Monitor privileged roles, standing access, stale assignments, and access drift, documenting all findings accurately and escalating any anomalies or risks promptly to ensure compliance and security posture remains intact.
Create comprehensive reports detailing the access privileges for individual users, groups, applications, and roles across the system.
Facilitate the gathering of evidence to support audit and compliance activities.
Develop and sustain PowerShell scripts leveraging Microsoft Graph functionality.
Automate routine identity management processes, including reporting, validation, and remediation tasks, to ensure efficiency and accuracy.
Facilitate automation initiatives by leveraging Azure Automation, Azure Functions, Logic Apps, or workflows structured around pipelines.
Develop standardized scripts for provisioning, cleanup, operational validation, reporting, and access verification procedures.
Ensure the automation code remains well-structured and thoroughly documented at all times.
Facilitate device identity scenarios for Entrained, hybrid-joined, and registered devices.
Work alongside endpoint management teams to monitor and utilize device compliance signals for Conditional Access configurations.
Investigate and resolve access-related challenges concerning device identity, compliance status, and authentication criteria.
Verify that device-level access controls comply with established identity and security policies.
Qualifications
Proficiency in Microsoft Entra ID requires a minimum of three years of hands-on professional experience.
A Bachelor’s degree in a technical field is essential for this position.
A master’s degree is highly desirable.
Proficiency in Microsoft Entra ID, formerly known as Azure Active Directory, is required.
A solid grasp of identity and access management principles is required.
Skilled in implementing Conditional Access policies, Multi-Factor Authentication (MFA), diverse authentication methods, and managing enterprise applications.
Proficiency in implementing Single Sign-On (SSO) solutions leveraging protocols such as Security Assertion Markup Language (SAML), OAuth 2.0, or OpenID Connect (OIDC) is required.
Proven expertise in managing app registrations, service principals, API permissions, as well as secrets and certificates is required.
Proven expertise in developing and implementing PowerShell scripts is required.
Proficiency in Microsoft Graph API at a foundational to intermediate level is required.
Proficient in English with excellent verbal and written communication skills.
Proficient in the local language with strong verbal and written communication skills, both in professional and casual contexts.
Qualifications
BA/BSc/HND , MBA/MSc/MA
Experience Required
3 years
