Job Title: Senior Microsoft Entra Identity (IAM) Engineer
Location: Remote
Contract : Long term
Role Overview
We are hiring a Senior Microsoft Entra Identity Engineer / Consultant to lead identity modernization, governance, and secure access initiatives in a large, multi-agency environment. This role focuses on Microsoft Entra ID (Azure AD) architecture, authentication modernization, cross-tenant identity, and Zero Trust access controls.
The ideal candidate combines deep technical expertise and hands-on experience with the ability to design, implement scalable Microsoft Identity Access Management (IAM) and Security governance models, as well (hands-on) support customers operational teams through transformation, cloud native IAM modernization.
Key Responsibilities
- Design and Implement Microsoft Entra ID environments
- Design Conditional Access, MFA, and password less authentication strategies
- Implement cross-tenant federation, synchronization, and B2B collaboration
- Deploy Privileged Identity Management (PIM) and just-in-time access
- Build delegated admin models using Administrative Units and RBAC
- Govern group management, dynamic groups, and privileged access groups
- Support Okta to Entra migration and federated-to-managed domain transitions
- Lead transition from SMS MFA to FIDO2, Windows Hello, Authenticator, and TAP
- Design identity logging, monitoring, and security alerting
- Secure application registrations and API permissions
- Integrate with legacy identity systems and hybrid environments (AD Connect, SCIM, LDAP)
Required Experience
- 8+ years in Identity & Access Management (IAM)
- 5+ years hands-on with Microsoft Entra ID / Azure AD
- Strong expertise in:
- Conditional Access & Identity Protection
- MFA & Password less authentication
- Cross-tenant identity architectures
- Entra RBAC & Administrative Units
- PIM and least privilege models
- Experience with hybrid identity (AD Connect / Cloud Sync)
- Familiarity with Okta federation and Identity Access Management (IAM) platform
- Knowledge of Azure RBAC and subscription governance
Nice to Have
- Public sector or multi-entity organization experience
- Microsoft certifications (SC-300, SC-100, AZ-500)
- Experience with GCC / Government Cloud
- Familiarity with legacy IAM platforms (NetIQ, LDAP, Kerberos)
What Success Looks Like
You will help the organization move to a modern, secure, Zero Trust identity platform with strong governance, reduced standing privilege, and scalable cross-agency access controls.
Never miss an opportunity! Create an alert based on the job you applied for.
