Entra Engineer

Manage and support Entra ID as the primary identity platform, including SSO, MFA, Conditional Access, and directory integrations.,Configure and maintain application integrations for secure and seamless access.,Collaborate with application developers on secure SSO integrations and modern OAuth/OIDC authentication flows.,Work with Entra ID App Registrations and Enterprise Applications, including API permissions, app onboarding, and configuration updates.,Support external access and vendor collaboration through B2B integrations, external identities, and sharing policies.,Drive continuous improvement of Entra ID integrations and identity services.,Support identity lifecycle processes: provisioning, deprovisioning, group-based access, and SCIM integrations.,Troubleshoot authentication and access issues across Entra ID, Okta, and connected applications.,Manage incoming requests and incidents via ServiceNow, ensuring timely resolution.,Maintain documentation, runbooks, and best practices for operations and audit readiness.,Assist with building and maintaining Conditional Access policies aligned with Zero Trust principles.,Support governance of admin roles using Privileged Identity Management (PIM) and enforce least-privilege access.,Partner with cybersecurity, directory, and platform engineering teams to enhance IAM maturity.,Implement and strengthen phishing-resistant authentication and Conditional Access policies.,Audit identity configurations, remediate security gaps, and reduce excessive permissions.,Bachelor's degree in Computer Science, Information Security, or a related technical field, or equivalent hands-on experience.,4–6 years of experience in IT, cybersecurity, or IAM, with direct experience supporting Entra ID / Azure AD.,Hands-on experience configuring and supporting SSO, MFA, Conditional Access, SCIM provisioning, and group-based access.,Strong troubleshooting and analytical skills with high attention to detail.,Experience documenting processes and maintaining operational consistency.,Experience managing or supporting IAM-related tickets or identity lifecycle operations.,Experience managing custom claims, attributes, or scopes in an identity platform, and testing integrated application access flows.

Experience with Okta Workforce Identity Cloud (SSO, MFA, Lifecycle Management, API-based integrations).,Experience with Okta Advanced Lifecycle Management, Okta Workflows, or expression-based mapping logic.,Understanding of Zero Trust, least privilege, access governance, and modern authentication best practices.,Knowledge of cloud environments (AWS, Azure, GCP) and identity integration with cloud-based applications.,Relevant certifications such as Microsoft SC-300 or Okta Certified Professional/Administrator are strongly preferred.,Experience working in regulated environments (GxP) is a plus.

Bachelor's Degree or equivalent hands-on experience

Must be fully vaccinated against COVID-19 and receive all available booster shots. Only individuals who qualify as U.S. persons (citizens, permanent residents, asylees, or refugees) are eligible due to export control laws.