Opdrachtomschrijving

Position Overview:
As an Azure Active Directory Identity and Access Management (IAM) Engineer, you will be responsible for designing, implementing, and managing the identity and access controls within the Azure cloud environment. Your role will involve ensuring secure and efficient authentication, authorization, and identity governance for users, applications, and resources. You will collaborate with cross-functional teams to establish best practices, enhance security, and enable seamless user experiences.

  Key Responsibilities:
1. Identity and Access Architecture:
   - Design and implement Azure AD architecture, including Azure AD Connect, Azure AD B2B, Azure AD B2C, and hybrid identity solutions.
   - Develop and maintain identity management strategies aligned with business goals and compliance requirements.

2. Single Sign-On and Multi-Factor Authentication:
   - Configure and manage Single Sign-On (SSO) solutions for cloud and on-premises applications using Azure AD and other federation protocols.
   - Implement and enforce Multi-Factor Authentication (MFA) for enhanced user identity verification.

3. Role-Based Access Control (RBAC):
   - Design and enforce RBAC models to manage granular access controls for Azure resources.
   - Develop custom RBAC policies and guidelines for different user roles and resource types.

4. Privileged Identity Management (PIM):
   - Implement and manage PIM to control and monitor privileged access to Azure resources.
   - Define time-bound, just-in-time access for administrative tasks.

5. Conditional Access and Policies:
   - Create and enforce conditional access policies to restrict access based on user, device, location, and risk.
   - Balance security and usability through dynamic access controls.

6. Identity Governance and Lifecycle Management:
   - Develop and maintain identity lifecycle management processes, including provisioning, deprovisioning, and role changes.
   - Implement identity governance policies to ensure compliance and minimize orphaned accounts.

7. Security and Compliance Auditing:
   - Monitor and audit Azure AD logs and reports to detect suspicious activities and security incidents.
   - Collaborate with compliance teams for audits and regulatory requirements.

8. Integration with Identity Services:
   - Integrate Azure AD with other identity services, such as Azure Key Vault and Azure Information Protection.
   - Facilitate secure access to sensitive data and encryption keys.

9. Documentation and Training:
   - Document IAM processes, procedures, and best practices for internal reference and knowledge sharing.
   - Provide training and support to internal teams on Azure AD IAM concepts and usage.

  Qualifications and Requirements:
- Local Dutch(C1/C2 proficiency in reading, wring & speaking) with good English proficiency
- A minimum of 3+ years of experience in relevant areas
- Relevant industry certifications such as Microsoft Certified: AZ-500/MS-500, SC-100, SC-300 etc.
- Extensive hands-on experience with Azure AD, Azure AD Connect, Azure AD B2B, Azure AD B2C, and related services.
- Proficiency in PowerShell scripting for automation and configuration tasks.
- Strong understanding of identity protocols and standards (e.g., SAML, OAuth, OpenID Connect).
- Familiarity with directory synchronization, identity federation, and hybrid identity scenarios.
- Excellent communication skills for effectively collaborating with technical and non-technical stakeholders.

Working Conditions:

- This role may involve occasional on-call availability for responding to critical incidents.
- Work in a collaborative environment, interacting with DevOps, Security, and Compliance teams.
- Stay updated with the latest Azure AD features, security enhancements, and IAM trends.

Note: This job description provides a general overview and may be tailored to match the specific needs of the organization and the evolving landscape of identity and access management within Azure Active Directory.