Entra Engineer

Location: Remote
Employment Type: Contract

About the Role

We are seeking an experienced Entra Engineer to design, implement, and manage identity and access management (IAM) solutions using Microsoft Entra ID (formerly Azure AD). This role will focus on optimizing authentication, authorization, and security controls while ensuring SOC 2 compliance and best practices in identity governance. The ideal candidate will have hands-on experience with Active Directory (AD), Entra ID, Conditional Access, and security posture management.

Key Responsibilities

• Design, implement, and manage Microsoft Entra ID solutions to support identity and access management.
• Maintain and optimize Active Directory (AD) infrastructure, including hybrid identity environments.
• Develop and enforce security policies and access controls aligned with SOC 2 compliance requirements.
• Implement Conditional Access policies, multi-factor authentication (MFA), and single sign-on (SSO)strategies.
• Monitor and improve identity protection, privileged access management (PAM), and role-based access controls (RBAC).
• Troubleshoot authentication, authorization, and identity lifecycle issues across cloud and hybrid environments.
• Collaborate with security, compliance, and IT teams to ensure IAM aligns with organizational security frameworks.
• Conduct audits, risk assessments, and remediation efforts related to identity security and regulatory requirements.
• Stay up to date on emerging IAM threats, Entra ID updates, and industry best practices.

Required Qualifications

• 3+ years of experience working with Microsoft Entra ID (Azure AD), Active Directory, and IAM solutions.
• Strong knowledge of SOC 2 compliance and how it applies to identity security.
• Experience configuring and managing Conditional Access, MFA, and identity governance policies.
• Familiarity with PowerShell scripting for automation and IAM administration.
• Knowledge of Zero Trust security models and best practices.
• Strong troubleshooting skills for authentication and authorization issues.
• Experience working with cloud-based IAM tools, Microsoft Defender for Identity, and security event monitoring.

Preferred Qualifications

• Microsoft certifications (e.g., Microsoft Certified: Identity and Access Administrator Associate).
• Experience integrating IAM solutions with Okta, Ping Identity, or other third-party providers.
• Familiarity with SOC 2 audits, compliance documentation, and reporting.
• Hands-on experience with Privileged Access Management (PAM) solutions.