Our client is looking for an experienced IAM Architect with expertise in Active Directory (AD) and EntraID/Azure AD (B2B and B2C) to lead the strategic redesign and automation of the IAM infrastructure. This role will focus on optimizing AD and Azure AD environments to ensure scalability, security, and efficiency, supporting evolving business needs and enhancing operational resilience.
Key Responsibilities:
Assessment and Gap Analysis
- Analyze the current AD and EntraID/Azure AD setup, identifying security, scalability, and operational efficiency gaps.
- Address vulnerabilities and develop a strategic plan for improvements in collaboration with key stakeholders.
IAM Architecture Redesign
- Design a scalable, secure AD and Azure AD architecture supporting internal and external identity needs.
- Align architecture with business requirements, compliance standards, and GxP.
Security and Risk Mitigation
- Strengthen security through advanced access controls, MFA, PAM, and resilient disaster recovery solutions for AD environments.
Automation and Operational Efficiency
- Implement automation for IAM processes (e.g., provisioning, de-provisioning), and deploy monitoring tools to improve system health, security, and performance.
- Establish standards for naming conventions, OU structure, and GPO management.
Scalability and Future-Proofing
- Ensure the IAM environment can support long-term growth and adapts to new business requirements and technology integrations.
Business Continuity and Compliance
- Design for resilience to ensure continuity in case of incidents, achieving GxP and GDPR compliance and audit readiness.
Data Quality and Clean-up
- Lead a thorough AD data clean-up and standardization process, removing outdated accounts and security settings to maintain a secure and efficient directory.
Qualifications:
- 8+ years of experience in AD architecture and large-scale IAM solutions.
- Expertise in AD security, automation, and management tools (e.g., AD Manager Plus).
- Proven experience addressing IAM scalability and security challenges.
- Knowledge of GxP, audit readiness, and compliance standards for AD environments.
- Microsoft certifications (e.g., Microsoft Certified: Identity and Access Administrator) preferred.
Preferred Skills:
- Advanced disaster recovery experience for AD and Azure AD.
- Strong problem-solving skills and experience in GxP-regulated environments.