Microsoft Entra ID Architect

Role Overview

This role is for an experienced Identity and Access Management Domain Architect (m/f/d) with a solid background in Microsoft identity technologies. The ideal candidate should have at least 10 years of experience in systems engineering and architecture and focus on technologies such as Microsoft Entra ID, AD FS, AD DS, AD LDS and related hybrid identity concepts.

Key Responsibilities

• Produce enterprise-level designs for Active Directory, Azure Active Directory/Entra ID, SaaS application integration, Azure App, and SSO for enterprise initiatives.
• Analyze customer business needs to develop and implement robust solutions.
• Implement cloud-based security policies, procedures, control standards, and operational practices.
• Design and manage secure architecture for AAD B2B, B2C, and B2E.
• Provide timely support and troubleshooting to clients and internal teams.

Your Skills and Requirements

• Advanced proficiency with Microsoft Entra ID, External ID, and PowerShell scripting.
• Expertise in Conditional Access Policies, Multi-Factor Authentication, SSO, Federation, Authorization, and Session Management concepts.
• Deep understanding of protocols like SAML 2.0, OAuth 2.0, OpenID, and SCIM-based provisioning.
• Familiarity with Azure Active Sync and Cloud Sync configurations.
• Microsoft Identity and Access Administrator certification and prior experience with Okta, ForgeRock, Oracle or SailPoint are a plus.
• Experience with Logic Apps, Power BI, Power Automate, Microsoft Defender, Microsoft Internet Access, and Private Access is preferred.

If you’re a proactive problem-solver with strong communication