IAM Systems Engineer

Duties of this position may include but not be limited to:

We are seeking a skilled Systems Engineer to strengthen our Hybrid cloud security posture across Active Directory, Microsoft Azure AD and Google Cloud Platform (Google Cloud Platform) while also advancing our Identity and Access Management (IAM) program. The engineer will work closely with security technicians to improve cloud security controls, streamline monitoring, and migrate existing security products and log sources into Microsoft Sentinel SIEM for centralized visibility and response.

Key Responsibilities:

• Daily account provisioning audits and corrections between all Tenants, Experience with LDAP, PowerShell, Microsoft Graph
• Conduct regular cloud and IAM security assessments, ensuring compliance with industry standards and organizational policies.
• Improve and maintain security configurations, policies, and controls in Hybrid Microsoft environment with On-prem Active Directory, Azure and Google Cloud environments.
• Enhance IAM capabilities, including user lifecycle management, role-based access control (RBAC), privileged access management (PAM), and conditional access policies across cloud and enterprise systems.
• Collaborate with security technicians to onboard and integrate cloud and third-party security products into Microsoft Sentinel.
• Develop and refine analytic rules, playbooks, and dashboards within Sentinel to support threat detection and response.
• Assist in incident investigations by optimizing logging, monitoring, and reporting from cloud services and IAM systems.
• Provide guidance to technicians on IAM best practices, security governance, and SIEM operations.

Qualifications:

• 3+ years of experience in cloud security engineering and/or IAM administration/engineering.
• Hands-on expertise with AD, MSGraph, PowerShell, LDAP tools, Microsoft Azure Security (Entra ID, Defender for Cloud, conditional access, PIM) and Google Cloud IAM/security tools.
• Experience with Microsoft Sentinel setup, log ingestion, and use-case development.
• Strong background in IAM platforms, solutions, or technologies (e.g., Azure Entra ID, Active Directory, Google Admin Console).
• Familiarity with onboarding connectors, custom log sources, and security product integrations into SIEM platforms.
• Solid understanding of incident response, threat detection, and security monitoring.
• Relevant certifications (e.g., Azure Security Engineer Associate, Google Professional Cloud Security Engineer, Identity-focused certifications, Security+, MCSA, etc.) are a plus.

Preferred Skills:

• Scripting/automation (PowerShell, Python, or similar) for IAM administration and SIEM onboarding.
• Knowledge of compliance frameworks (NIST CSF, CIS Controls, ISO 27001).
• Strong communication skills to coordinate with technicians, analysts, and leadership.