Macpower Digital Assets Edge
Entra ID Architect | Senior Identity and Access Management (IAM) Architect
Macpower Digital Assets Edge, Chicago, Illinois, United States, 60290
Core Responsibilities:
rchitect and implement enterprise-grade IAM solutions using Microsoft Entra ID (Azure AD) and on-premises Active Directory. Lead application onboarding with modern protocols (SAML, OIDC, OAuth) and legacy authentication systems. Design and implement MFA, conditional access policies, and custom claims configurations. Execute identity and application migration projects, including directory synchronization via Entra Connect. Develop automation scripts (PowerShell, Shell, Perl) for IAM operations and UNIX/Linux integrations. Configure and optimize CI/CD pipelines for IAM using DevOps tools (Docker, Jenkins, Bitbucket). Create comprehensive access governance dashboards and reporting solutions. Serve as primary technical lead for client engagements and solution implementations. Conduct end-to-end access management testing and validation. Establish and maintain operational best practices for IAM environments. Technical Requirements:
7+ years hands-on experience with IAM implementation and architecture. Expertise in Microsoft Entra ID (Azure AD) and Active Directory fundamentals. Proven experience with identity federation and CIAM implementations. Strong knowledge of authentication protocols (SAML, OAuth, OIDC). pplication migration and onboarding experience (2-3 full Entra ID implementations). UNIX/Linux administration and scripting skills (PowerShell, Shell, Perl). Experience with identity governance tools (SailPoint, Saviynt, Okta, etc.). Leadership & Client Management:
Demonstrated experience leading IAM projects and teams. Strong client-facing skills with international client experience. Excellent problem-solving and troubleshooting capabilities. Outstanding verbal and written communication skills. Preferred Qualifications:
1-2 years of development experience in any programming language. Knowledge of fraud detection and risk-based authentication systems. Experience with infrastructure components supporting SSO implementations.
rchitect and implement enterprise-grade IAM solutions using Microsoft Entra ID (Azure AD) and on-premises Active Directory. Lead application onboarding with modern protocols (SAML, OIDC, OAuth) and legacy authentication systems. Design and implement MFA, conditional access policies, and custom claims configurations. Execute identity and application migration projects, including directory synchronization via Entra Connect. Develop automation scripts (PowerShell, Shell, Perl) for IAM operations and UNIX/Linux integrations. Configure and optimize CI/CD pipelines for IAM using DevOps tools (Docker, Jenkins, Bitbucket). Create comprehensive access governance dashboards and reporting solutions. Serve as primary technical lead for client engagements and solution implementations. Conduct end-to-end access management testing and validation. Establish and maintain operational best practices for IAM environments. Technical Requirements:
7+ years hands-on experience with IAM implementation and architecture. Expertise in Microsoft Entra ID (Azure AD) and Active Directory fundamentals. Proven experience with identity federation and CIAM implementations. Strong knowledge of authentication protocols (SAML, OAuth, OIDC). pplication migration and onboarding experience (2-3 full Entra ID implementations). UNIX/Linux administration and scripting skills (PowerShell, Shell, Perl). Experience with identity governance tools (SailPoint, Saviynt, Okta, etc.). Leadership & Client Management:
Demonstrated experience leading IAM projects and teams. Strong client-facing skills with international client experience. Excellent problem-solving and troubleshooting capabilities. Outstanding verbal and written communication skills. Preferred Qualifications:
1-2 years of development experience in any programming language. Knowledge of fraud detection and risk-based authentication systems. Experience with infrastructure components supporting SSO implementations.