Key Responsibilities:
- Monitor, investigate, and respond to access-related incidents and anomalies.
- Support and maintain IAM tools, including Azure AD, Microsoft Entra ID, and PIM (Privileged Identity Management).
- Perform regular audits of user roles and access permissions across subscriptions and AD groups.
- Execute and support onboarding/offboarding processes to enforce least privilege access principles.
- Provide first-level support related to IAM operations.
- Collaborate with cloud and security teams to review role assignments, service principals, and RBAC policies.
- Maintain compliance documentation related to access control changes and audit responses.
- Contribute to continuous improvement initiatives in IAM governance and automation.
- Document and maintain runbooks and process flows for IAM tasks and escalation procedures.
- Participate in incident reviews and support investigations related to identity threats or misconfigurations.
Qualifications:
Essential
- Solid understanding of identity management principles and IAM lifecycle operations.
- Experience with Microsoft Entra ID/Azure AD, including RBAC and PIM role activations.
- Familiarity with AuditLogs and interpreting access activity via KQL queries.
- Strong troubleshooting and analytical skills with attention to data accuracy.
- Experience with support tools such as ServiceNow, Log Analytics, and Azure Monitor.
- Basic scripting knowledge (PowerShell or KQL) for automation and reporting.
- Understanding of compliance frameworks such as ISO, SOC, or GDPR.
- Strong written and verbal English communication skills.
- Ability to work in a rotational shift environment and collaborate across time zones.
Desirable
- Certification in Azure Security Engineer Associate or related Microsoft certifications.
- Experience in Entra ID role design and JIT (Just-In-Time) access governance.
- Familiarity with enterprise IAM platforms (SailPoint, Okta, etc.)
- Knowledge of ITIL practices, especially in incident and change management.
- Experience in working with multi-tenant environments or hybrid cloud setups.
WTW is an Equal Opportunity Employer
Report job
