Senior Tech Lead – Identity & Access Management – Microsoft Entra ID, Azure AD
Formula5
full-time
Posted on:
Location Type: Remote
Location: Remote • 🇺🇸 United States
Visit company websiteJob Level
Senior
Tech Stack
AzureCloudTerraform
About the role
- Architect and implement access governance in Microsoft Entra ID using PIM, Conditional Access, Entitlement Management, and Azure RBAC with proper group lifecycle practices.
- Design secure integration patterns for applications that still rely on classic AD groups, including hybrid group strategies, group writeback, and migration planning.
- Own the full identity lifecycle, including provisioning, de-provisioning, access reviews, and governance workflows.
- Lead modernization work to replace legacy AD group usage with Entra ID native controls and enforce least privilege across Azure and on-prem environments.
- Define, implement, and automate group management policies such as naming standards, ownership rules, expiration, and dynamic membership.
- Integrate Entra ID with SaaS platforms using SCIM or custom provisioning patterns.
- Act as a Level 3 escalation point for complex identity incidents and operational challenges.
- Mentor junior engineers and promote secure identity practices across teams.
- Produce documentation including architecture decisions, runbooks, and governance standards.
Requirements
- Strong experience in identity and access management with hands-on expertise in Microsoft Entra ID at enterprise scale.
- Proven experience running hybrid identity environments with Entra Connect, cloud sync, health monitoring, sync rules, and group writeback.
- Deep knowledge of PIM, Conditional Access, Entra ID Governance, Access Reviews, Entitlement Management, and Azure RBAC.
- Experience with dynamic groups, administrative units, and scoped policies.
- Strong automation skills using PowerShell and Microsoft Graph API; Terraform, ARM, or Bicep is a plus.
- Experience supporting or migrating applications reliant on traditional on-prem AD security groups.
- Solid understanding of on-prem Active Directory structures, LDAP, GPOs, and hybrid identity challenges.
- Familiarity with identity standards including OAuth2, OpenID Connect, SAML, and Kerberos/NTLM.
Benefits
- Full-time remote work.
- International projects with top-tier clients.
- Supportive, people-first culture.
- Learning opportunities and certifications covered by the company.
- Competitive compensation based on experience and skills.
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
Microsoft Entra IDPIMConditional AccessEntitlement ManagementAzure RBACPowerShellMicrosoft Graph APITerraformARMBicep
Soft skills
mentoringleadershipdocumentation