IAM SSO Engineer

Must skills:

IAM – Identity Access Management

SSO – Single Sign On

Azure B2C

Azure AD

Azure federation

Job Description:

Enable existing application movement to modern authentication in the multi-cloud environment through use of SSO and Federation in Azure AD B2C (https://docs.microsoft.com/en-us/azure/active-directory-b2c/overview).
Design, develop, deploy, integrate and support Single Sign On (SSO) using DevOps model for all types of devices using Azure AD B2C.
Address issues through integration design such as:
User account bulk load and/or sync from existing application user registry to Azure AD B2C.
Password/credential management
API Integrations / Access Tokens
Coordinate between infrastructure, application, and threat monitoring teams to ensure the timely and successful delivery of solutions.
Analyze Server side and client Side SSO logs to debug issues.
Produce and implement enterprise-level designs for Azure authentication and on prem AD, as wells as Azure AD/B2B authentication for global initiatives.
Lead steady state and continuous improvement efforts for Authentication technologies for globally diverse solutions.
Support the enterprise SSO platform(s) to enable a secure and enhanced authentication experience for enterprise/partners and end users.
Maintain accurate documentation of processes for areas of responsibility.

Job Requirements:
Qualifications:

7+ years of experience in Federation space
Experience with Azure AD B2C platform and IEF framework and Microsoft Graph APIs
Experience implementing custom policies in Azure B2C platform
Ability to customize the login screen/experience within Azure B2C
Thorough knowledge and work experience on Azure Active Directory Federation Services and related authentication/authorization technologies
Strong hands-on experience with industry standard SSO technologies and protocols (SAML, OAuth2.0, OpenID Connect, WS-Fed, FIDO, SCIM, LDAP, Kerberos, NTLM)
Strong understanding of user registries, password storage, bulk loading, syncing, and SCIM with demonstrated experience
Understanding of API design concepts, RESTful Services, and modern application interaction patterns
Strong hands-on experience with securing APIs with OAuth 2.0 and other means.
Experience in extending or integrating on premises AD with Azure based AD
Expert Knowledge on Azure AD conditional access as well as Azure B2B/B2C
Creating application configuration in Azure AD Federation and supporting SSO infrastructure including conditional access.
Hands on experience on tools like SCOM, App Insight, Splunk etc.
Experience in Windows PowerShell scripting
Ability to utilize various programming or scripting languages such as Shell scripting, Perl, Python, JavaScript, HTML and PowerShell
Familiarity with deployments and integration of IAM solutions within the cloud (Azure, AWS, GCP)
Experience in deploying large-scale, global projects and programs
Familiarity with IT security and risk management practices