Job ID: JOB_ID_749
Role Overview: IAM Architect (Microsoft Entra ID)
Qualis1 Inc is seeking a visionary Identity and Access Management (IAM) Architect to lead the design and implementation of advanced security frameworks for our enterprise clients. This 12-month onsite engagement focuses on leveraging Microsoft Entra ID (formerly Azure AD) to secure complex, regulated environments. As a senior architect, you will be responsible for the strategic roadmap of identity services, ensuring that access controls are both robust and frictionless. This role requires a deep technical understanding of modern identity protocols, risk-based security, and global compliance standards.
Key Responsibilities and Duties
- Lead the end-to-end design and architecture of Identity and Access Management (IAM) solutions, focusing on scalability, security, and user experience.
- Architect and implement Microsoft Entra ID (Azure AD) configurations, including hybrid identity setups, B2B/B2C integrations, and enterprise application registrations.
- Design and deploy risk-based Conditional Access policies to enforce zero-trust security principles across the organization.
- Develop comprehensive Multi-Factor Authentication (MFA) and Privileged Access Management (PAM) strategies to protect high-value assets and administrative accounts.
- Ensure all identity architectures comply with stringent regulatory requirements, including SOX, GDPR, and industry-specific security frameworks.
- Collaborate with C-level stakeholders and IT leadership to align IAM strategies with broader business objectives and digital transformation initiatives.
- Provide technical leadership and mentorship to security engineering teams during the implementation phase of architectural designs.
- Conduct architectural reviews and security assessments of existing identity infrastructures, identifying vulnerabilities and recommending remediation paths.
- Manage the lifecycle of digital identities, including automated provisioning, de-provisioning, and periodic access reviews.
- Stay abreast of emerging identity trends and Microsoft Entra ID feature releases, evaluating their potential impact and benefit to the enterprise.
- Facilitate cross-functional workshops to gather requirements and build consensus on identity governance and administration (IGA) processes.
Technical Qualifications and Experience
- Minimum of 10 years of professional experience in Information Security, with a primary focus on Identity and Access Management.
- Proven track record as an IAM Architect, having successfully led large-scale deployments of Microsoft Entra ID (Azure AD).
- Expert-level knowledge of identity protocols such as SAML, OAuth 2.0, OpenID Connect (OIDC), and SCIM.
- Extensive experience designing and implementing Conditional Access, Identity Protection, and Privileged Identity Management (PIM).
- Deep understanding of security governance in regulated environments, specifically regarding SOX and GDPR compliance.
- Strong background in directory services, including Active Directory Domain Services (AD DS) and Azure AD Connect.
- Exceptional communication skills, with the ability to articulate complex security concepts to both technical and non-technical audiences.
- Relevant industry certifications such as CISSP, CISM, or Microsoft Certified: Cybersecurity Architect Expert (SC-100) are highly preferred.
- Experience with automation and scripting (PowerShell, Graph API) for identity management tasks.
Special Requirements
Onsite requirement in San Francisco, CA or Cincinnati, OH; 12-month contract duration; Must have experience in SOX/GDPR regulated environments.
Compensation & Location
Salary: $175,000 – $240,000 per year (Estimated)
Location: San Francisco, CA
Recruiter / Company – Contact Information
Recruiter / Employer: Qualis1 Inc
Email: raju.r@qualis1inc.com
Recruiter Notice:
To remove this job posting, please send an email from
raju.r@qualis1inc.com with the subject:
DELETE_JOB_ID_749