Senior Entra ID SME

By /

Senior Entra ID SME

Our client, a leading global supplier for IT services, requires Senior Entra ID SME to be based at their client’s office in Wokingham / Warwick UK.

This is a hybrid role – you can work remotely in the UK and attend the Wokingham / Warwick office 2-3 days per week .

This is a 12 month temporary contract to start asap

Day rate: Competitive Market rate

Our client is seeking a visionary and highly technical Entra ID SME to lead the BAU and identity enhancement in customer identity environment. While our existing operation team focus on the Identity operations, this role focus on Entra ID expertise to support the operations and enhancements and BAU automations.

The Microsoft Entra SME is responsible for designing, implementing, and governing enterprise identity and access management (IAM) solutions using Microsoft Entra ID (Azure AD). This role ensures secure, scalable, and compliant identity services, supporting both human and non‑human identities across cloud and hybrid environments.

This role requires a deep IAM hands-on experience of hybrid environment and modern automation paradigms, mentoring teams, and providing technical direction to senior management.

Key Responsibilities

  • Identity & Access Management
  • Design and manage Microsoft Entra ID architecture
  • User lifecycle (Joiner-Mover-Leaver)
  • Group management (static, dynamic, role-assignable)
  • Role-based access control (RBAC)
  • Own the end-to-end IAM operations focusing Entra ID for CUSTOMER, ensuring robust protection across on-premises, cloud, and hybrid environments.
  • Authentication & Security
    • Multi-Factor Authentication (MFA)
    • Conditional Access policies
    • Passwordless solutions (FIDO2, Windows Hello)
    • Enforce Zero Trust principles
    • Monitor and respond to identity-related incidents
  • Operations & Support
    • Provide support for identity-related issues:
    • Authentication failures
    • Sync issues
    • Group/role assignment issues
  • Application & Agent Management
    • Enterprise Applications
    • App registrations (Service Principals)
    • Review and control:
    • API permissions
    • Admin consent processes
  • Identity Governance & Compliance
    • Access Packages (Entitlement Management)
    • Access Reviews
    • Privileged Identity Management (PIM)
  • Ensure compliance with:
    • CIS, ISO 27001, NIST, internal security policies
    • Conduct periodic access and role reviews
  • Automation & Integration (Good to Have)
    • Design and implement automation using:
    • Azure Logic Apps
    • Power Automate
    • Microsoft Graph API
  • Certificate & PKI Integration (Good to Have)
    • AD CS (Certificate Authority)
    • NDES / SCEP
  • Define and maintain:
    • Operational runbooks
    • Incident and problem management processes
    • Define identity standards and enforce best practices

Key Requirements

Essential Skills:

  • 10+ years of experience in Identity and Access Management focused on Microsoft Entra ID, with at least 3+ years of BAU experience in IAM.
  • Proven ability to see the “big picture” and design holistic solutions that balance performance, security, cost, and identity automation.
  • Strong hands-on experience with:
    • Microsoft Entra ID (Azure AD)
    • Active Directory (AD DS)
    • Hybrid identity (Entra Connect / Cloud Sync)
  • Expert-Level Technical Knowledge:
    • Deep expertise in Entra ID and identity automations
    • Advanced knowledge of enterprise Identity operations in hybrid environment
    • Strong understanding of Microsoft Entra ID, Active Directory and Certificate Management, PKI(good to have), CI/CD pipelines and scripting.
  • Strong Experience with:
    • Conditional Access
    • PIM & Access Reviews
    • App registrations & Enterprise Apps
  • Scripting:
    • PowerShell
    • Microsoft Graph API
  • Security & Compliance
    • Knowledge of: Zero Trust architecture
    • Identity security best practices
  • Soft Skills
    • Strong stakeholder communication (technical & leadership)
    • Analytical and problem-solving mindset
  • Deep understanding of ITIL concepts within an Agile, process-driven environment. A “no-blame” mindset focused on continuous improvement and preventing future incidents through architectural automation. Highly self-motivated with a passion for learning.

Desirable Skills:

Certifications (Preferred)

Microsoft:

    • SC-300 – Identity and Access Administrator
    • AZ-500 – Azure Security Engineer
  • Other:
    • IAM / security certifications (CISSP, CISM – optional)

Due to the volume of applications received, unfortunately we cannot respond to everyone.

If you do not hear back from us within 7 days of sending your application, please assume that you have not been successful on this occasion.

Please do keep an eye on our website https://projectrecruit.com/jobs/ for future roles.

Upload your CV/resume or any other relevant file. Max. file size: 50 MB.

London | Frankfurt | Dublin | New York | Québec  Singapore | Hong Kong | Mumbai | Bangkok | Manila

Grow Your Global Team Confidently!

We deliver high-quality onboarding, payroll and compliance services across 130+ countries, supporting both employees and contingent workers. Our premium solutions ensure you hire, manage and pay compliantly – without compromise.

Resources

About

Policies

Copyright © 2024 Project Global

project global logo
Global Payroll Association
payroll org no background
cyber essentials certified logo