Job Description

:Job title/Role: IAM Entra EngineerExperience - 5 to 10 yearsLocation - Hyderabad, Bangalore, Pune.About Zensar:Zensar is a digital solutions company helping organizations around the world achieve new thresholds of business performance. We work with clients in banking and financial services, hi-tech and manufacturing, insurance, consumer services, and more. We prepare our clients for sustainable success through experience design, cloud technology, advanced analytics, and business acceleration.Zensar is seeking an experienced Data Loss Prevention (DLP) specialist to join our global cyber security operations and incident response team. The DLP focused Cybersecurity Operations and Incident Response Engineer is a critical member of the team providing subject matter expertise in the detection, alerting, and investigation of DLP incidents. Successful candidates will have a strong background in DLP analytics, investigation, and incident management.We are seeking a skilled and experienced Microsoft Entra ID Specialist to join our Identity and Access Management team. The ideal candidate will be responsible for implementing, managing, and optimizing our Microsoft Entra ID environment, with a focus on Role-Based Access Control (RBAC), Multi-Factor Authentication (MFA), and Single Sign-On (SSO) solutions. This role is critical in ensuring secure and efficient access to our organization\'s resources across cloud and on-premises environments.ResponsibilitiesMicrosoft Entra ID ManagementDesign, implement, and manage the Microsoft Entra ID infrastructureConfigure and maintain directory synchronization between on-premises Active Directory and Entra IDManage user lifecycles, including provisioning, deprovisioning, and access reviewsImplement and manage Entra ID Premium featuresRole-Based Access Control (RBAC)Design and implement RBAC policies aligned with organizational security requirementsCreate and manage custom roles to meet specific business needsImplement Privileged Identity Management (PIM) for just-in-time and time-bound role activationConduct regular access reviews and maintain the principle of least privilegeIntegrate RBAC with various Microsoft and third-party applicationsMulti-Factor Authentication (MFA)Design and implement MFA strategies across the organizationConfigure and manage various MFA methods (e.g., Microsoft Authenticator, SMS, phone call)Implement risk-based Conditional Access policies in conjunction with MFAMonitor and respond to MFA-related security events and user issuesDevelop and maintain MFA bypass processes for emergency scenariosSingle Sign-On (SSO)Implement and manage SSO for various cloud and on-premises applicationsConfigure and maintain federation services (AD FS) if requiredIntegrate third-party applications with Entra ID for SSO capabilitiesTroubleshoot SSO-related issues and optimize the user experienceImplement and manage App Proxy for secure remote access to on-premises web applicationsSecurity and ComplianceImplement and manage Conditional Access policiesConfigure and maintain Identity Protection features to detect and remediate identity risksEnsure compliance with relevant standards and regulations (e.g., GDPR, HIPAA)Conduct regular security assessments of the Entra ID environmentGenerate and analyze reports on identity and access-related security metricsMonitoring and TroubleshootingSet up and maintain monitoring for Entra ID services and related componentsTroubleshoot complex identity and access-related issuesAnalyze Entra ID logs and audit reports to identify potential security issues or areas for improvementDevelop and maintain runbooks for common identity and access management scenariosIntegration and AutomationIntegrate Entra ID with other security tools and SIEM systemsDevelop PowerShell scripts and utilize Graph API for identity management automationImplement and manage Identity Governance solutionsContinuous ImprovementStay updated with the latest Microsoft Entra ID features, security best practices, and industry trendsEvaluate and recommend new identity and access management technologiesContribute to the development of identity and access management strategies and roadmapsRequirementsBachelor\'s degree in Computer Science, Information Technology, or a related field5+ years of experience in IT, with at least 3 years focused on identity and access managementStrong experience with Microsoft Entra ID (Azure AD) and related technologiesIn-depth knowledge of RBAC, MFA, and SSO concepts and implementationsFamiliarity with on-premises Active Directory and hybrid identity scenariosExperience with PowerShell scripting and Microsoft Graph APIUnderstanding of security protocols (e.g., SAML, OAuth, OpenID Connect)Excellent problem-solving and analytical skillsStrong communication skills, both written and verbalMicrosoft 365 Certified: Enterprise Administrator Expert certification requiredAdditional certifications (e.g., CISSP, CISM) are a plusRelationships:You will work with CIS Team (Shared Services, Network, Security, Applications) architects, engineers, developers, support, and leadership team on projects and provides subject matter expertise as necessary.Maintaining a good relationship with our global IT teams is key to your success. In your role you will need to be able to communicate with people at all levels in the organization and work with several of our suppliers and partners.

Zensar