Overview
Skills
Job Details
Location: Dallas, Texas (Onsite)
Duration: 6+ Months Contract with possible extension
Job Description: Identity & Access Management (IAM) / Security Analyst
We are seeking a proactive and technically skilled Identity & Access Management (IAM) / Security Analyst to lead and manage our enterprise identity infrastructure with a strong emphasis on cybersecurity and operational ownership. This role is critical to our organization s IT and security strategy, responsible for the secure management of user identities, access controls, and directory services with a forward-looking focus on Entra ID.
Role Summary:
This position will lead the migration from on-premises Active Directory to Microsoft Entra ID (Azure AD) and maintain long-term ownership of Entra ID. Additionally, the analyst will serve as the primary point of contact (POC) for cybersecurity matters, including direct coordination with our Security Operations Center (SOC), ensuring our identity infrastructure and access management practices are secure, compliant, and continuously improving.
Key Responsibilities:
IAM Operations & Identity Governance
Own the identity lifecycle process: provisioning, de-provisioning, re-certification, and periodic access reviews.
Enforce RBAC, least privilege, and zero trust identity principles across all systems.
Govern Microsoft Entra ID capabilities such as Conditional Access, Access Reviews, Entitlement Management, and Privileged Identity Management (PIM).
Serve as a key liaison to business stakeholders for system access needs, role definitions, and access policies.
Align IAM controls with regulatory compliance frameworks (NIST, ISO 27001, SOX, HIPAA).
Application Access and Compliance
Manage user access and permissions across enterprise applications such as Enertia, Cygnet, OpenInvoice, and others.
Audit and track access changes via ServiceNow and related tools to support compliance and operational integrity.
Define and document access workflows, procedures, and ownership models for supported applications.
Support both internal and external audit activities with timely data, evidence, and analysis.
Active Directory & Entra ID Management
Lead the strategic migration from legacy Active Directory to Microsoft Entra ID, including assessment, planning, change management, and decommissioning of AD infrastructure.
Post-migration, act as owner of the Entra ID platform, ensuring availability, resilience, and integration with core enterprise services and third-party SaaS platforms.
Implement governance models for Entra ID, including Conditional Access, Authentication Methods, Service Principals, Managed Identities, and role assignments.
Collaborate with application teams to transition authentication methods and identity federation to Entra ID-native configurations.
Cybersecurity Oversight
Act as the primary POC for all cybersecurity workstreams related to IAM and beyond.
Maintain direct and continuous coordination with the Security Operations Center (SOC) to ensure rapid response to identity-based threats, alerts, and indicators of compromise.
Monitor and respond to suspicious behavior related to user access, credential abuse, and privilege escalation.
Implement Zero Trust-aligned identity protections, including phishing-resistant authentication, identity protection risk policies, and role segregation.
Contribute to the broader organizational cybersecurity strategy and risk management initiatives.
Process Automation & Continuous Improvement
Continuously improve IAM processes with a focus on automation, self-service, and policy-based enforcement.
Develop or integrate scripts and tools to automate onboarding/offboarding, approvals, group membership, and audit trails.
Lead cybersecurity-focused improvement efforts, including:
Hardening IAM posture through MFA, SSPR, and passwordless authentication.
Eliminating legacy accounts and reducing identity attack surface.
Enhancing real-time monitoring and alerting of anomalous access behaviors.
Maintain detailed documentation of architectures, controls, and workflows for internal use and audit purposes.
Required Qualifications:
Strong experience with Active Directory, Microsoft Entra ID (Azure AD), and hybrid identity environments.
Solid understanding of identity governance, authentication protocols (OAuth, SAML, OIDC), and RBAC/ABAC models.
Proficient in Microsoft Entra features: PIM, Access Reviews, Conditional Access, Identity Protection.
Familiarity with identity security best practices and compliance standards such as NIST, ISO, HIPAA, SOX.
Hands-on experience supporting or working with a Security Operations Center (SOC) and SIEM tools.
Proficient in technical documentation, process design, and workflow automation.
Excellent communication and collaboration skills with both technical and non-technical stakeholders.