Microsoft Identity Lead Engineer

Essential Responsibilities

• Lead the design, engineering, and deployment of solutions for Microsoft Identity Platforms such as Active Directory and Entra ID.
• Develop and execute product roadmaps for Active Directory or Entra ID. Applying technical knowledge, industry expertise, and insights, while working with IAM leadership to define and prioritize features.
• Oversee day-to-day management of Active Directory and/or Entra platform configurations required to support new and existing business requirements, application integrations, workloads, regulatory compliance, and all other platform efforts or deliverables.
• Maintain system documentation, including architecture diagrams, configurations, and deployment plans.
• Champion secure-by-design principles, while maintaining strong governance, technical excellence, operational processes, and risk management of the platforms.
• Apply specialized knowledge to implement and enhance security, performance, and availability metrics.
• Work closely with cross-functional stakeholders and technical teams, including architects & engineers, product teams, information security, and risk management functions.
• Collaborate with various groups and individuals to troubleshoot and resolve escalated production issues.
• Provide ongoing coaching and mentorship to junior team members to continuously improve the technical knowledge and continuous learning culture across the team.
• Perform other duties and/or special projects as assigned.

Qualifications/Requirements

• BS/BA in Computer Science / other technical degree or Business Management and 7 years of IT experience or in lieu of degree High School Diploma/GED and 10 years of IT experience
• 5+ years of experience in planning, designing, building, & managing hybrid enterprise Active Directory & Entra environments.
• 3+ years of experience working with agile methodologies on a product team
• 3+ years of experience with DevOps, CI/CD, automation, or scripting in enterprise environments.
• Strong understanding of identity and access management principles and best practices in modern IDP's, directories, and authentication systems.
• Experience planning, building, & managing integrations with operational resiliency solutions such as Splunk, NewRelic, and Rubrik for IDP and user directory technology platforms.
• Experience with secure architectures, security posture hardening, vulnerability management, and security operations integrations.
• Experience working with agile methodologies as a Product Owner and/or Tech Lead on a product team
• Experience automating deployments using DevOps & CI/CD best practices

Desired Characteristics

• 7+ years of experience engineering mission critical technology and/or security services in a large, highly-regulated enterprise.
• 5+ years of experience in an information security domain, with specialized subject matter expertise in Identity & Access Management, Infrastructure Security, or similar.
• Experience with 3rd party security tools for Active Directory (ie: Quest, CrowdStrike IDP, Semperis, etc.)
• Experience with Cloud technologies, including IaaS, PaaS, and SaaS; with an emphasis on the Microsoft Azure ecosystem.
• Experience managing Entra tenants with Office365 services, Azure, Enterprise Applications, and Conditional Access policies.
• Strong executive presence, with proven ability to communicate technical strategy and tailor messaging to the appropriate audience.