Security Architect

Project Role : Security Architect
Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills : Identity and Access Management (IAM) Operations
Good to have skills : NA
Minimum 3 year(s) of experience is required
Educational Qualification : A 15 years full time education is required

Summary: Seeking a forward-thinking professional with an AI-first mindset to design, develop, and deploy enterprise-grade solutions using Generative and Agentic AI frameworks that drive innovation, efficiency, and business transformation.
We are seeking a skilled and motivated Identity and Access Management (IAM) Engineer with hands-on experience in Microsoft Entra ID (Azure AD) and Delinea PAM Solution, SAML SSO, MFA and the candidate must be proficient on Delinea Secret server (PAM Privileged Access Management solution). The ideal candidate will also have exposure to Okta, on premise Active Directory, and advanced Azure identity configurations such as App Registrations, Enterprise Applications, and Conditional Access Policies. This role requires a strong technical foundation, scripting capability, and the ability to work in a 24x7 support environment.
Roles & Responsibilities: Lead AI-driven solution design and delivery by applying GenAI and Agentic AI to address complex business challenges, automate processes, and integrate intelligent insights into enterprise workflows for measurable impact.
-Configure, maintain, and troubleshoot SAML 2.0-based SSO integrations with both cloud and on-premise applications.
-Support Microsoft Entra ID (Azure AD), Entra Connect, identity infrastructure including App Registrations, Enterprise Applications, and Conditional Access Policies.
-Manage and support MFA policies and configurations, ensuring secure access for global users.
-Manage Delinea Secret server (PAM- Privileged Access Management solution) for health checks, maintenance task, perform DR testing.
-Perform compliance tasks on Delinea Secret server like user access management, access audit, service account maintenance, Support operational tickets/requests. Troubleshoot common issues. Provide weekly status updates to client teams.
-Experience with on-premises Active Directory environment. Supporting tasks related to Domain controller management- Health checks, troubleshooting issues for authentication, user tickets.
-Develop automation scripts using PowerShell to streamline routine identity management tasks.
-Collaborate with stakeholders to onboard new applications and ensure alignment with identity governance best practices.
-Monitor and resolve issues related to SSO failures, MFA challenges, and user access concerns.
-Provide support during incidents and escalations, including participation in 24x7 rotational shifts.
-Document processes, integrations, and architecture clearly for ongoing operational use and audit readiness.
-Exposure to Okta and Active Directory is a strong plus, especially in hybrid identity scenarios.
Professional & Technical Skills: Strong grasp of Generative and Agentic AI, prompt engineering, and AI evaluation frameworks. Ability to align AI capabilities with business objectives while ensuring scalability, responsible use, and tangible value realization. The candidate should be AI Native.
-Minimum 3 years of experience with Microsoft Entra ID (Azure AD), Entra Connect, SAML SSO, MFA, Also experience with PAM
-Experience in configuring and managing:
-Azure App Registrations
-Enterprise Applications
-Conditional Access Policies
-Basic PowerShell scripting for automation and task orchestration.
-Working knowledge of Active Directory, LDAP, and cloud/hybrid identity models.
-Exposure to Okta or other identity providers (IDPs) is a strong plus.
-Understanding of IAM principles such as authentication, federation, authorization, RBAC, and identity lifecycle.
-Strong problem-solving and analytical skills.
-Excellent communication and documentation capabilities.
-Ability and willingness to work in 24x7 rotational shifts to support global operations.
-Preferred Certifications-
-Microsoft Certified: Identity and Access Administrator Associate (SC-300)
-Okta Certified Professional (Optional)
-CompTIA Security plus or equivalent (Optional)
-ITIL Foundation (Optional)Additional Information:- The candidate should have minimum 3 years of experience in Identity and Access Management (IAM) Operations.
AI Powered Tech Talent
- A 15 years full time education is required.