IAM Business Analyst

A "Microsoft Entra and Conditional Access Engineer" is a technical role focused on designing, implementing, and managing identity and access management (IAM) solutions using Microsoft Entra (formerly Azure Active Directory) with a particular emphasis on configuring and enforcing granular access controls through Conditional Access policies, ensuring only authorized users can access specific applications and data based on various conditions like location, device, and user identity.

Key responsibilities may include:

• Designing and implementing Conditional Access policies:

Creating rules that define when multi-factor authentication (MFA), device compliance checks, location restrictions, and other security measures are required for user access to applications and resources.

• Managing user identities and access levels:

Provisioning and managing user accounts within Microsoft Entra, including assigning appropriate roles and permissions based on business needs.

• Integrating applications with Entra:

Configuring applications to utilize Azure AD authentication protocols like OAuth and SAML for seamless single sign-on (SSO).

• Monitoring and troubleshooting access issues:

Required skills and experience:

• Expertise in Microsoft Entra administration, including Conditional Access policies, Identity Protection, and Privileged Identity Management.
• Understanding of identity management concepts like SAML, OAuth, OpenID Connect, and Kerberos.
• Familiarity with Azure administration and related services
• Strong analytical and troubleshooting skills to diagnose and resolve identity-related issues
• Knowledge of security best practices and compliance requirements related to identity management