Identity and Access Management Engineer

This is a fully remote position, open to applicants in United States.

📋 Description

• Design, implement, and sustain Microsoft Azure Active Directory (Azure AD / Entra ID) environments in both hybrid and cloud-native settings.

• Oversee user lifecycle processes such as provisioning, de-provisioning, and role-based access control (RBAC) assignments.

• Set up and manage Conditional Access policies, Multi-Factor Authentication (MFA), and Single Sign-On (SSO) solutions.

• Administer Microsoft Privileged Identity Management (PIM) and Privileged Access Management (PAM) solutions to uphold least-privilege principles.

• Integrate SaaS applications and on-premises systems with Azure AD utilizing SAML, OAuth 2.0, and OpenID Connect protocols.

• Monitor identity infrastructure for threats, anomalies, and compliance gaps using Microsoft Defender for Identity and Microsoft Sentinel.

• Provide support and management for on-premises Active Directory environments, Group Policy, and hybrid identity configurations (Azure AD Connect / Entra Connect).

• Collaborate with security, compliance, and application teams to ensure IAM policies adhere to regulatory standards including SOX, HIPAA, and GDPR.

• Create and sustain documentation, runbooks, and standard operating procedures for IAM systems and processes.

• Resolve identity-related incidents, service requests, and access issues in a timely and organized manner.

• Engage in IAM roadmap planning, architecture reviews, and continuous improvement initiatives.

⛳️ Requirements

• 3–5 years of experience in identity and access management, with a solid emphasis on Microsoft technologies.

• Hands-on proficiency with Azure Active Directory / Microsoft Entra ID, including tenant management and identity governance.

• Expertise in managing on-premises Active Directory and hybrid identity environments.

• Experience in designing and implementing SSO integrations using SAML, OAuth 2.0, and OpenID Connect.

• Familiarity with Microsoft Privileged Identity Management (PIM) and the configuration of Conditional Access policies.

• Practical experience with MFA solutions, including Microsoft Authenticator and FIDO2 security keys.

• Proficiency in PowerShell scripting for IAM automation, reporting, and administrative tasks.

• Strong understanding of Zero Trust security principles and their practical implementation in identity and access management.

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or equivalent professional experience.

🏝️ Benefits

• Comprehensive health benefits including medical, dental, and vision insurance.

• 401(k) retirement plan with company match.

• Generous paid time off, company holidays, and flexible scheduling.

• Remote or hybrid work flexibility based on role and team needs.

• Ongoing professional development support, including funding for certifications and training.

• Collaborative, inclusive culture driven by innovation and continuous improvement.

• The opportunity to work with cutting-edge technology at a global precision medicine and motion company.