Senior Identity & Collaboration Engineer

About The Position

Requirements

• Demonstrated expertise in Microsoft Entra ID + Active Directory, including authentication, authorization, and hybrid identity troubleshooting.
• Deep experience with: SSO configuration and maintenance (SAML/OIDC concepts) Conditional Access fundamentals and real-world enforcement MFA/SSPR support and identity troubleshooting patterns
• Experience building or operating identity lifecycle processes (JML / LCM).
• Strong troubleshooting mindset — structured approach, not guesswork.

Nice To Haves

• Practical admin ability across Teams, SharePoint, OneDrive, and Outlook in a Microsoft 365 environment.
• Experience with tool consolidation, adoption strategy, or “platform standards” work.
• Scripting/automation exposure (PowerShell), especially for identity tasks.
• Familiarity with governance patterns (access reviews, entitlement concepts, least privilege).

Responsibilities

• Own day-to-day identity operations across Microsoft Entra ID and Active Directory: user provisioning, group membership, access changes, authentication troubleshooting, and hybrid identity issues.
• Design and support SSO configurations for SaaS and internal apps (SAML/OIDC), including secure sign-in policies and reliable user experience.
• Implement and manage Authentication & Authorization controls: MFA strategy and modernization Conditional Access design and tuning Access controls that align to business needs while reducing risk
• Own Lifecycle Management (LCM): joiner/mover/leaver flows, role-based access patterns, and access reviews.
• Support Identity Governance & Administration (IGA) capabilities (e.g., entitlement management concepts, access packages, governance workflows, role-based access models).
• Partner with HR to treat HR as the master source of identity attributes and lifecycle triggers (where applicable), improving automation and reducing manual work.  This isn’t currently in place, but having the skills to approach this in the future is critical.
• Create and maintain identity runbooks, standards, and documentation so identity outcomes are predictable, repeatable, and auditable.
• Support Identity federation & familiar with RBAC
• Must have had experience in the past deploying monthly patches, mitigating vulnerabilities & other necessary updates for computers.
• Must understand “zero hands” support model where computers can be managed & loaded over the wire.
• Provide practical support and administration skills across core M365 collaboration services: Teams (channels, governance, usage patterns) SharePoint (sites, permissions models, information organization) OneDrive (storage/ownership patterns, user guidance) Outlook (shared mailboxes, archiving behaviors, modern usage patterns)
• Lead efforts to consolidate tools, eliminate redundancy, and drive standards so teams aren’t using 3 tools to do the same thing.
• Create lightweight training and quick-reference guides that help end users understand: “What we have” “When to use it” “What the standard is”