Beschreibung
For our client we are looking for an Azure Security Architect starting in October (m/f/d)Your tasks:
- Analyze and review AD & AAD Security concepts and settings according to best practices and security standards
- Configure stable and secure Active Directory and Azure Active Directory operations by changing and improving the security concepts based on the previous analysis
- Analyze and review AD & AAD for potential architectural changes and improvements. Consult client based on the conducted analysis and reviews. Update existing or create new documentation for each new or updated service.
- Run AD & AAD assessment and trigger housekeeping and cleaning up activities and check if the service runs stable and if that data (App data, User data) is up to date in both Directories. Utilize best practices tools and standards either from Microsoft or third party developers.
- Evaluate SailPoint integration of AD/AAD and possible ServiceNow integration to AAD/AD (automated provisioning and object import/export). Document potential requirements for each integration and potential tasks based on the “AD&AAD” requirements.
- Consult and steer the internal operations teams in handling issues and doing updates in Microsoft AAD Conditional Access to provide secure and smooth user experience and secure AAD service. Prepare and set up potential calls or workshops (online) and prepare any kind of required documentation.
- Develop an Access Management solution based on Azure AD Premium considering the clients Identity Management Security strategy and the existing architecture (Azure AD solution). Analyze the status quo continuously and create documentation
- Consult the client's directory service team by creating proposals (Word, PowerPoint, Teams) in accordance with the client strategy and sharing those with the team.
- Create, maintain and synchronize the hybrid identities in Microsoft AD and Azure AD with Azure AD Connect.
Integrate 3rd party business applications with the Azure AD identity infrastructure and support SSO (Single Sign-On) with SAML and OAuth. Integrate the SSO environment into SAML and OAuth protocols. Consult the internal applications owners.
- Consult and work together with the Directory Service team on the solution for the 2nd-factor authentication for mobile devices with Azure AD Premium. A potential solution should be developed by open discussions (MS Teams) or any kind of workshop and should also be documented and signed by the Service Owner.
- Consult the clients Application, Architecture and Development teams by evaluating and assessing technical and business requirements using tools like Azure DevOps dashboard. Document and share the evaluated requirements with the above mentioned stakeholders after the assessment (MS Teams, SharePoint, Word, PowerPoint).
- Consult client in the technical and functional review of the approach proposed by the provider for implementation and migration.
- Identify and check migration activities (best practice for migration, issue management, steering of migration). Possible migration activities: to remove existing DomainController´s from DataCenter or how B2B partners are about to be integrated in Azure Active directory.
- Consult clients Service Owner to get an understanding about any planned migration activities or to highlight any identified migration activities.
- Review and assess the used tools based on technical expertise and know-how for the migration project(s):
* Access management solutions based on Azure AD Premium
* Active Directory & Azure AD
* IdP protocols like SAML 2.0 / OAuth 2.0
* Microsoft Identity Management Tools (MIIS, FIM, AADC)
* Role-based access controls in Azure with RBAC and or PIM
* B2B and Guest User handling in Azure AD
* Microsoft Cloud Application Security (MCAS)
* B2C User integration and maintenance
Your qualification:
- Experience with Azure Active Directory und B2B Handling
- Experience with Microsoft Identity Management Tools (MIIS, FIM, AADC)
- Experience with IdP protocols like SAML 2.0 / OAuth 2.0
- Experience with B2C User integration and maintenance
- Knowledge of Role-based access controls in Azure with RBAC and or PIM
- Very good English skills
Wir sind überzeugt, dass stetige Weiterentwicklung, Innovationsstärke, Agilität und Schnelligkeit wichtige Erfolgsfaktoren der deutschen Wirtschaft darstellen. Wir wissen, dass die projektbezogene Arbeitsorganisation sowie die Kombination aus externem und internem Know-how diese Erfolgsfaktoren stärkt.
Wir glauben daran, dass der Zugang zu spezialisiertem Wissen von hochqualifizierten Experten einen immer höheren Stellenwert einnehmen wird. Durch unsere Dienstleistung schaffen wir diesen Zugang, managen Planung und Einsatz und leisten somit einen wesentlichen Beitrag, um den Erfolg unserer Kunden und Business Partner zu sichern.
Wir sind der Partner für die 20.000 besten, qualifiziertesten selbständigen Projektexperten in Deutschland. Wir vertreten das höchste Erfahrungsniveau für den Einsatz selbständiger Experten unter den führenden großen spezialisierten Dienstleistern in Deutschland.
Als Partner bieten wir Ihnen Zugang zu den Top-Unternehmen aus hochinteressanten Branchen. Wir fokussieren uns auf eine nachhaltige und erfolgreiche Zusammenarbeit und begleiten Sie vom ersten Schritt in die Selbständigkeit bis hin zu Compliancethemen. Wir stehen für eine intensive Vor-Ort-Betreuung und unterstützen Sie von der Projektakquise über die Durchführung bis zum Abschluss. Auch wirtschaftlich geben wir Ihnen maximale Sicherheit: Seit Jahren bewerten uns Hausbanken und externe Ratingagenturen mit exzellenten Noten in Bezug auf Bonität und Zuverlässigkeit.