Senior IAM & Enterprise Messaging Engineer

Senior IAM & Enterprise Messaging Engineer

Schaumburg, IL (onsite 2-3 days per week)

Full-Time Direct Hire

Join an Industry Leader Driving Global Innovation!

Position Summary
We are seeking a highly experienced Senior IAM & Enterprise Messaging Engineer! This a hybrid full-time position in the Chicago suburb of Schaumburg, IL. Candidates must reside near the location as this is not a remote position.

The Senior IAM & Enterprise Messaging Enginee will lead the design, implementation, and optimization of identity and messaging solutions across hybrid environments with our premier client. This role will serve as a technical lead for Identity & Access Management (IAM) and enterprise messaging platforms, ensuring secure, scalable, and compliant systems across on-premises and cloud infrastructures.

This individual will play a critical role in managing identity lifecycle processes, enabling secure access, and supporting enterprise email and collaboration platforms while driving automation and operational excellence

What You Bring to the Role (Ideal Experience)

• Bachelor s degree in Computer Science, Information Security, or related field (or equivalent experience)
• 10+ years of experience in IAM and enterprise messaging environments

Deep expertise in:

• Active Directory (multi-domain)
• Azure AD / Entra ID
• Hybrid identity architectures

Strong experience with:

• Microsoft 365 / Exchange (Online & On-Prem)
• Azure AD Connect / Entra Connect
• Conditional Access & MFA
• Hands-on experience with PowerShell scripting and automation
• Experience implementing DNS/email authentication protocols (SPF, DKIM, DMARC)
• Strong understanding of authentication protocols (SAML, OAuth, OpenID Connect)
• Ability to lead technical initiatives and communicate across teams
• Experience supporting escalations and end-user troubleshooting

Preferred Qualifications

• Microsoft or Identity-related certifications
• Experience in large enterprise environments (3,000+ users, multi-domain, multi-tenant)
• Exposure to identity security and email security platforms
• Experience with cloud platforms (Azure, AWS)
• Familiarity with Azure AD B2C / Entra External ID
• Strong analytical, documentation, and communication skills

What You ll Do (Skills Used in This Position)

• Design, implement, and support IAM solutions across Active Directory (on-prem), Azure AD / Entra ID, and hybrid environments
• Manage and optimize Azure AD Connect / Entra Connect Sync and Cloud Sync
• Implement and support SSO, federation (ADFS), and Azure AD Application Proxy
• Configure and maintain Conditional Access and Multi-Factor Authentication (MFA)
• Lead user lifecycle management (onboarding, offboarding, role changes)
• Conduct access reviews, audits, and compliance reporting
• Develop automation solutions using PowerShell and APIs (Microsoft Graph)
• Design and manage Microsoft 365 / Office 365 and Exchange environments (on-prem & online)
• Implement and support email security protocols (SPF, DKIM, DMARC, DNS)
• Monitor and troubleshoot mail flow and messaging systems
• Support SCIM integrations with SaaS applications
• Provide Tier 3 escalation support for IAM and messaging issues
• Participate in incident response, root cause analysis, and security investigations
• Maintain detailed technical documentation and operational procedures
• Collaborate cross-functionally with infrastructure, security, and application teams
• Support on-call rotation and project-based initiatives

Compensation and Employment
This role requires authorization to work in the U.S. without current or future visa sponsorship. The expected salary range for this position is $95,500 - $150,000 per year, depending on experience and qualifications. This role also qualifies for comprehensive employee benefits such as health insurance, 401(k), and paid time off. TalentFish is committed to pay transparency and equal opportunity. The salary range provided is in compliance with applicable state and federal regulations. All offers are contingent upon the completion of a background check, which may include but is not limited to reference checks, education verification, employment verification, drug testing, criminal records checks, and any required certifications or compliance requirements based on the end client's background check policies and applicable laws.
TalentFish is an employee-owned company pioneering a new realm in talent acquisition. We are redefining IT staffing by evolving AI, video screening, and our unique platform. TalentFish focuses on providing the best employee, consultant, and client experience possible. At TalentFish we are an Equal Opportunity Employer; we embrace and encourage diversity.