IAM Engineer – Azure Entra ID (SSOMFA)

Core Technical Skills

• Strong hands-on experience with SSO protocols: OAuth 2.0 SAML 2.0 and WS-Federation
• Deep understanding of authentication & authorization flows including:
  • Token types
  • Session management
  • Federation architecture
• Expertise in Multi-Factor Authentication (MFA) configuration enforcement and troubleshooting
• Solid knowledge of Conditional Access policies including:
  • Policy design and troubleshooting
  • Session controls
  • Risk-based access

Microsoft Entra ID (Azure AD) Expertise

• Experience with:
  • Client federation
  • Cross-tenant access settings
  • Guest user lifecycle management
• Strong familiarity with:
  • App registrations & Enterprise Applications
  • API permissions & RBAC
  • Identity governance concepts
• Hands-on experience configuring:
  • Seamless SSO
  • Conditional Access & device compliance policies
• Ability to evaluate login risks and enforce adaptive authentication controls

SSO & Application Integration

• Configure and integrate applications using:
  • SAML 2.0 OAuth WS-FED
• Interpret application requirements and design appropriate SSO integration solutions
• Integrate third-party authentication solutions into enterprise environments
• Support SSO across multiple environments including migration & implementation

Identity & Access Management (IAM)

• Strong experience with IAM/IDM tools and security solutions
• Design and implement IAM strategies and operational processes
• Expertise in:
  • User lifecycle management
  • Group management and policy design
• Experience importing and managing users from:
  • Active Directory (AD)
  • LDAP
  • Other enterprise systems

Security & Certificate Management

• Hands-on experience with:
  • Certificate management
  • Signing certificates
  • Client certificates
• Implement secure authentication frameworks using:
  • SSO
  • MFA
  • Risk-based authentication

Troubleshooting & Operations

• Diagnose and resolve SSO/authentication issues using:
  • Logs and traces
• Troubleshoot authentication and authorization issues across applications
• Monitor and manage:
  • Incidents service requests and change requests
  • Major incident handling and resolution
• Provide end-to-end operational support for IAM systems

Application Support & Governance

• Register and configure applications in Entra ID including:
  • SAML OAuth API integrations
  • RBAC and Conditional Access
  • Manifest configurations
• Ensure secure and efficient access to cloud applications
• Collaborate with stakeholders to support application onboarding and integration