Identity and Access Management

We are looking for an experienced Workplace IAM SME, specializing in Modern Workplace to support the carve-out project. The focus of the role is to support the transition team with modern end-user technology services, with a strong emphasis on identity management. This role is pivotal in ensuring a seamless, secure, and efficient digital workplace experience for our users. Strong documentation and communication skills are essential.

Skills and Experience:

• Strong expertise in Active Directory (forest/domain trusts, GPOs, OU migrations).

• Deep knowledge of Azure AD (Entra ID), including B2B collaboration, MFA, Conditional Access, and SSO integrations.

• Experience with cross-tenant M365 migrations (users, groups, Teams, service accounts).

• Familiarity with IAM security best practices and regulatory requirements (GDPR, SOX).

• Previous experience in carving out end users, tenant split, and mailbox migration.

• Previous experience in M&A IT carve-out projects is a strong advantage.

  
  

Key Responsibilities:

• Assess existing identity landscape (on-prem AD, Entra ID, M365) for in-scope users and service accounts.

• Design and implement identity separation strategy (trust relationships, domain separation, user migration).

• Manage cross-tenant IAM configuration to enable secure coexistence between buyer and seller during transition.

• Review and reconfigure MFA, Conditional Access policies, and RBAC assignments for departing users.

• Identify and remediate orphaned accounts, shared credentials, and privileged accounts before migration.

• Support data migration team with access provisioning and secure data transfer for mailbox, Teams, SharePoint.

• Document IAM architecture and post-migration access controls for compliance and audit purposes.

• Serve as primary IAM technical contact for coordination with buyer IT teams and application owners.