Azure IAM Engineer

Azure IAM Engineer to support our client located in Buffalo, NY.

Location: Remote - needs to work EST hours

As an IAM Engineer, you will play a crucial role in designing, implementing, and managing identity and access solutions in the Microsoft Azure cloud environment. You will be responsible for ensuring the security and compliance of our Azure resources and applications by effectively managing user access, authentication, and authorization processes.

Responsibilities:

1. Collaborate with stakeholders, architects, and security teams to design robust and scalable identity and access management solutions tailored to our Azure cloud environment.
2. Implement and configure Azure AD tenants, directories, and Azure AD Connect to establish secure user authentication and directory synchronization.
3. Define and enforce role-based access control policies to manage access to Azure resources, ensuring the principle of least privilege.
4. Implement and manage MFA solutions to add an extra layer of security for user authentication and prevent unauthorized access.
5. Create and enforce conditional access policies to control user access based on various factors such as device compliance and location.
6. Set up and manage PIM roles to enable just-in-time access for privileged users and enforce accountability.
7. Configure and maintain SSO solutions to streamline user access to cloud and on-premises applications.
8. Implement identity governance practices, including access reviews and entitlement management, to ensure ongoing compliance and security.
9. Monitor IAM-related logs and activities, conduct periodic audits, and respond to security incidents related to identity and access.
10. Create and maintain comprehensive documentation related to IAM configurations, processes, and best practices. Conduct training sessions for IT teams and end-users on IAM procedures.
11. Stay updated with the latest Azure IAM features, industry best practices, and security trends. Propose and implement improvements to enhance the overall IAM posture.

Requirements:

• Bachelor's degree in Computer Science, Information Technology, or a related field (or equivalent experience).
• Proven experience as an IAM Engineer or a similar role, with a focus on Microsoft Azure identity and access management.
• In-depth knowledge of Azure AD, Azure RBAC, and other Azure IAM services.
• Familiarity with Azure AD Connect and directory synchronization.
• Strong understanding of authentication and authorization protocols, including SAML, OAuth, and OpenID Connect.
• Experience with implementing Multi-Factor Authentication (MFA) and Conditional Access policies.
• Knowledge of Privileged Identity Management (PIM) and entitlement management.
• Understanding of identity governance concepts and access reviews.
• Familiarity with security monitoring and auditing related to IAM activities.
• Excellent communication and collaboration skills to work effectively with cross-functional teams and stakeholders.

Azure certifications, such as Microsoft Certified:

• Identity and Access Administrator Associate, would be advantageous.