Microsoft Cloud Integration Engineer
Typical Day in Role:
• Provide technical expertise in the field of Microsoft Entra ID.
• Advise on best practices for deployment Microsoft Entra ID including topics such as: conditional access, integration with MDM solutions including Microsoft Intune and VMware Workspace One, strong MFA implementation (Microsoft Authenticator Password Less Authentication, Windows Hello for Business, FIDO 2), etc.
• Assist in the design and implementation of Microsoft Entra ID as a solution to block access over enterprise resources based on device compliance status and allow self-remediation over Windows device managed by Intune.
• Troubleshoot and resolve complex Microsoft Entra ID issues.
• Collaborate with other IT teams to ensure the security and efficiency of the organization’s Microsoft Entra ID infrastructure.
• Stay updated with the latest advancements in Microsoft Entra ID and advise the organization accordingly.
• Expand device identity on-premises to hybrid identity based on Microsoft Entra ID, including the evaluation of extended functionality for conditional access.
• Integration of Cisco ACL/VPN client with Intune endpoint to enable block/unblock enforcement.
• Evaluate Entra ID conditional access expansion (behavior based, apps and data conditional access, identity protection and Privileged Identity Management (PIM).
• Support the implementation of cost-effective solutions to meet the business objectives by, providing detailed technical designs, investigating, and recommending new technology.
• Write technical documents (e.g. Design, Security Design, Threat Risk Assessment, and Solution Architecture Overview)
• Configure Proof of Concept environments to assist other technology groups.
Candidate Requirements/Must-Have skills:
1. 8+ years of industry experience as a Technical Analyst.
2. 3-5+ years of hands-on experience with identity protocols such as SSO, LDAP, SAML, OAuth, etc.
3. 2-3+ years of hands-on experience with hybrid user/device identity on Microsoft Entra ID (B2B and Guest access knowledge is desired).
4. Knowledge of cybersecurity principles and practices.
Nice-To-Have Skills:
• Certifications such as Microsoft Certified: Identity and Access Administrator Associate.
• Experience with Microsoft Technology Stack: Entra ID, Intune, M365, SCCM, Windows, ADFS.
• Experience in integrating applications with Microsoft Entra ID.
• Experience in developing advanced conditional access policies and potentially responding to live cybersecurity incidents.
• PowerShell scripting with Microsoft Entra ID.
• Ability to develop professional technical documentation and meet project deadlines.
• Experience working with global teams on security projects.
• Bilingual in Spanish.
Soft Skills:
• Excellent written, presentation, and verbal communication skills to be able to work well with technical peers and business stakeholders at different levels within the organization.
• Proven capabilities in building relationships among peers and management in other regions and business units to drive collaboration.
• The individual has broad knowledge about business and technology, who can re-conceptualize issues to discover practical solutions to hard problems.
• To make wise decisions (people, technical, business, and creative) despite ambiguity.
• Smartly separate what must be done well now, and what can be improved later.
• Treat people with respect independent of their status or disagreement.
• Focus on great results rather than on process.
• Has a driven personality, « can do attitude, » and results-oriented style.
• Challenge prevailing assumptions when warranted and suggest better approaches.
• Make time to help colleagues and share information openly and proactively.
Best vs. Average Candidate:
The ideal candidate would meet both the must-have and nice-to-have requirements. They should have a curious mindset, showing eagerness to learn and explore new concepts. They should have good judgement about which creative ideas and suggestions will work for future implementation.
Education:
• Bachelor’s degree in Computer Science, Computer Engineering, MIS, Information Technology, or similar degree; equivalent combination of education and experience may substitute for degree