Job Title: Sr Cybersecurity Engineer – Azure IAM

Location: San Fransisco, CA

Duration: 6+ Months

Exp. Level: 10+ Years

Job Description

We are seeking an experienced Senior Cybersecurity Engineer specializing in Azure IAM to join our business client team on a contract basis. This role will focus on designing, implementing, and managing identity and access solutions within the Microsoft Azure ecosystem to ensure secure and seamless authentication and authorization processes across the organization.

The ideal candidate will have deep expertise in Azure Active Directory (Azure AD) and related security features, helping to strengthen our overall cybersecurity posture and ensure compliance with industry standards.

Key Responsibilities

• Azure Identity and Access Management (IAM):
• Design, deploy, and manage Azure AD and related identity services (e.g., Conditional Access, Privileged Identity Management (PIM), and Multi-Factor Authentication (MFA)).
• Configure and manage Single Sign-On (SSO) integrations with third-party applications.
• Implement and manage Identity Protection policies to detect and respond to identity-based threats.
• Define and enforce Role-Based Access Control (RBAC) across Azure resources.
• Deploy and manage Privileged Access Workstations (PAWs) to secure administrative access.
• Implement Azure Identity Governance solutions, such as entitlement management and access reviews.
• Develop and enforce identity lifecycle processes, including user provisioning, de-provisioning, and access certification.
• Monitor and respond to identity-related security events using tools such as Microsoft Sentinel or similar SIEM solutions.
• Collaborate with IT and security teams to integrate IAM best practices across the organization.
• Provide guidance and support for identity-related incidents, including root cause analysis and remediation.
• Create and maintain detailed documentation of Azure IAM configurations, policies, and processes.
• Ensure compliance with industry standards and regulations, such as GDPR, HIPAA, or SOC 2.
  
  

Required Skills And Qualifications

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or equivalent work experience.
• 7+ years of experience in cybersecurity or identity and access management roles.
• Hands-on expertise with Azure Active Directory (Azure AD) and its advanced features.
• Proven experience implementing RBAC, Conditional Access, and PIM in enterprise environments.
• Strong understanding of authentication protocols (e.g., SAML, OAuth, OpenID Connect, Kerberos).
• Experience with identity lifecycle management and automation using tools such as PowerShell or APIs.
• Familiarity with Zero Trust principles and Azure security frameworks.
• Microsoft certifications such as Azure Security Engineer Associate, Azure Administrator Associate, or Azure Solutions Architect Expert.
• Industry certifications such as CISSP, CISM, or CEH.
• Strong analytical and troubleshooting skills.
• Excellent written and verbal communication skills.
  
  

Preferred Skills

• Experience integrating Azure AD with hybrid identity environments (e.g., Active Directory Federation Services (AD FS), Azure AD Connect).
• Knowledge of identity threat detection and response using tools like Microsoft Defender for Identity.
• Experience with cloud security in multi-cloud environments (e.g., AWS, GCP).