Responsibilities
Design and Implement IAM Solutions:
- Design, implement, and manage identity and access management solutions using Microsoft Entra ID (Azure AD) and Amazon AWS.
- Ensure seamless integration with internal and external applications and systems.
Automate Account and Group Management:
- Develop and deploy PowerShell scripts and Azure Automation workflows to automate user account and group management tasks.
- Implement self-service capabilities for account and group management to improve efficiency.
Manage Account Lifecycle:
- Oversee the entire account lifecycle management process, from user onboarding to offboarding.
- Provision new accounts and assign appropriate access rights based on role requirements.
- Regularly review and update user roles and permissions to reflect changes in job functions and organizational structure.
- Deprovision accounts promptly when users leave the organization or change roles, ensuring removal of access rights.
- Implement role-based access control (RBAC) to manage permissions based on job roles.
- Conduct periodic access reviews and certifications to ensure compliance with organizational policies.
Privileged Identity Management:
- Implement and manage Azure AD Privileged Identity Management (PIM) to control, monitor, and audit privileged access to resources.
- Configure PIM to enforce just-in-time (JIT) access, approval workflows, and access reviews for privileged roles.
Security and Compliance:
- Implement security best practices and ensure compliance with relevant standards and regulations.
- Conduct regular audits and reviews of access controls and permissions.
User Support and Troubleshooting:
- Provide support for IAM-related issues, including troubleshooting user access problems and resolving authentication issues.
- Act as an escalation point for complex IAM issues.
- Maintain comprehensive documentation for IAM processes, configurations, and workflows.
- Provide training and support to IT staff and end-users on IAM best practices and tools.
Monitor and Optimize IAM Systems:
- Monitor the performance and effectiveness of IAM systems and processes.
- Identify opportunities for improvement and implement optimizations to enhance security and efficiency.
- Collaboration and Communication:
- Collaborate with IT security, compliance, and other relevant teams to ensure cohesive IAM strategies.
- Communicate effectively with stakeholders to understand IAM requirements and address concerns.
- External Collaboration and Sharing:
- Manage external collaboration and sharing settings in Azure AD to facilitate secure access for partners and external users.
- Implement and manage B2B (Business to Business) collaboration settings and policies through Entra ID.
- Integrate and manage identity and access management for B2B scenarios, ensuring seamless and secure interactions with external partners.
AWS Integration:
- Integrate and manage IAM processes with Amazon AWS, ensuring secure access and interoperability between Azure AD and AWS.
- Implement and manage federated identities and single sign-on (SSO) between Azure AD and AWS environments.
- Monitor and optimize IAM configurations to ensure compliance and security across multi-cloud environments.
Automation and Efficiency:
- Develop and implement automation scripts using PowerShell to streamline routine support tasks such as software installations, updates, and system checks.
- Utilize Power Automate to create workflows that automate repetitive tasks and improve service efficiency.
- Identify opportunities to enhance efficiency through automation and proactively implement solutions.
Communication and Collaboration:
- Communicate effectively with users to understand their issues and provide clear instructions.
- Collaborate with IT teams to resolve issues and improve service delivery.
Requirements
-
Expertise in Entra ID, AWS IAM, PowerShell scripting, RBAC, MFA, and conditional access policies.
-
Strong analytical, problem-solving, and organizational skills.
-
Ability to document processes and provide training on IAM tools and practices.
-
Proven experience with managing identity and access management in cloud environments (specifically Azure and AWS).
-
Knowledge of security best practices and experience in ensuring compliance with relevant standards and regulations.
-
Ability to work in an AGILE environment, participating in sprint planning, execution, and review processes.
-
Strong communication skills and ability to collaborate effectively with internal teams and external partners.