Cloud Identity Systems & Security Engineer

At Pretius, we are looking for Senior Cloud Identity Systems & Security Engineer to a project for global-scale platform in the field of gaming and lotteries.

Project / Role

Identity Architecture & Strategy

• Lead the design and implementation of Microsoft Entra ID solutions, including multi-tenant and hybrid identity strategies.

• Develop and enforce identity governance frameworks, including Conditional Access, MFA, and Privileged Identity Management.

• Architect and implement Zero Trust security models and advanced identity protection measures.

• Take a technical leadership role in identity project plans, risk assessments, and contingency planning.

Integration & Multi-Cloud Identity

• Integrate Entra ID with AWS IAM, GCP IAM, GitHub Enterprise and other SaaS platforms.

• Configure and maintain SSO and federation (SAML, OAuth, OpenID Connect) across multiple environments.

• Manage tenant administration and lifecycle processes across Lottery, multi-tenant environments.

Operations & Governance

• Administer Entra ID tenants, including configuration, lifecycle management, and policy enforcement.

• Monitor and optimize identity performance, availability, and security posture.

• Develop and enforce enterprise IT governance policies, security standards, and compliance frameworks (ISO, NIST, GDPR).

Automation & Emerging Technologies

• Develop automation scripts for identity management using PowerShell, Microsoft Graph API, and Terraform.

• Evaluate and integrate emerging technologies (e.g., passwordless authentication, FIDO2, AI-driven identity analytics).

Security & Compliance

• Ensure compliance with regulatory requirements and internal security standards.

• Conduct regular audits and risk assessments of identity systems.

• Oversee disaster recovery planning and business continuity strategies for identity services.

Leadership & Collaboration

• Lead cross-functional teams in complex global deployments and migrations.

• Mentor junior and mid-level administrators.

• Collaborate with executive leadership to align identity strategy with business goals.

• Manage vendor relationships, contract negotiations, and SLAs.

Incident Response & Documentation

• Respond to identity-related incidents and security alerts.

• Conduct root cause analysis and post-mortem reviews for major incidents.

• Author and maintain technical documentation, architecture diagrams, and operational runbooks.

Requirements

• 10+ years in enterprise identity and security architecture.

• Proven track record in global rollouts, mergers/acquisitions IT integration, and multi-region deployments.

• Microsoft Certification: Identity and Access Administrator Associate or Azure Solutions Architect Expert; AWS/GCP identity certifications preferred.

• Technical Expertise: Microsoft Entra ID (Azure AD), Conditional Access, MFA, Identity Protection, PIM.

• Knowledge of identity protocols (SAML, OAuth 2.0, OpenID Connect, WS-Fed).

• Advanced scripting (PowerShell, Python).

• Good knowledge of Infrastructure-as-Code (Terraform).

• Familiarity with SIEM tools (Microsoft Sentinel).

• Strong organizational skills with experience managing large-scale projects and budgets.

Nice to have

• Experience with multi-cloud identity integration and global enterprise environments.

• Knowledge of modern authentication trends (passwordless, FIDO2).

• Familiarity with AI/ML-driven identity analytics.

What do we offer?

• We focus on long-term relationships based on fair principles and reliability.

• Co-financing of the Multisport card and Medicover private healthcare.

• Modern office available.

• Team bonding activities, internal courses, conferences, certifications.