Cloud Identity Security Engineer

Overview

Senior role focused on enterprise identity architecture, Microsoft Entra ID, multi-cloud integrations, and Zero Trust security. Responsible for strategic design, deployment, governance, automation, and leadership across global environments.

Key Responsibilities

• Design and implement Microsoft Entra ID (multi-tenant, hybrid)

• Identity governance: Conditional Access, MFA, PIM

• Zero Trust architecture & advanced identity protection

• Integrate Entra ID with AWS IAM, GCP IAM, GitHub Enterprise

• Federation & SSO: SAML, OAuth, OpenID Connect

• Tenant administration, lifecycle, policy enforcement

• Implement governance frameworks (ISO, NIST, GDPR)

• Automation with PowerShell, Graph API, Terraform

• Evaluate emerging tech (passwordless, FIDO2, AI-driven analytics)

• Lead global deployments, migrations, training, and cross-functional teams

• Vendor management, SLAs, executive collaboration

• Incident response, RCA, documentation & runbooks

Minimum Requirements

• 10+ years in enterprise identity & security architecture

• Deep expertise in Microsoft Entra ID, Conditional Access, MFA, Identity Protection, PIM

• Strong knowledge of SAML, OAuth 2.0, OpenID Connect, WS-Fed

• Hybrid identity experience

• Advanced scripting (PowerShell, Python) & IaC (Terraform)

• Familiarity with SIEM (Microsoft Sentinel)

• Relevant certifications: Azure Identity / Architect; AWS/GCP identity preferred