*Project Role Description :** Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security\-managed operations.
*Must have skills :** Microsoft Azure Active Directory
*Good to have skills :** NA
Minimum **5** year(s) of experience is required
*Educational Qualification :** 15 years full time education
Summary
As a Security Architect, a typical day involves designing and establishing a comprehensive cloud security framework that aligns with organizational objectives and operational standards. This role requires careful planning and documentation of security controls to ensure seamless integration and transition to managed cloud security operations. The position demands continuous evaluation of security architecture to support business needs while maintaining optimal performance and compliance within the cloud environment.
Roles \& Responsibilities
Expected to be an SME, collaborate and manage the team to perform.
Responsible for team decisions.
Engage with multiple teams and contribute on key decisions.
Provide solutions to problems for their immediate team and across multiple teams.
Lead the development and implementation of security strategies that protect cloud infrastructure and data assets.
Facilitate communication and coordination between cross\-functional teams to ensure security requirements are met throughout project lifecycles.
Mentor junior team members by providing guidance and support to enhance their skills and knowledge.
Professional \& Technical Skills
Must To Have Skills: Proficiency in Microsoft Azure Active Directory.
Strong knowledge of identity and access management principles within cloud environments.
Experience in designing and implementing security policies and controls for cloud platforms.
Ability to assess security risks and develop mitigation strategies tailored to cloud architectures.
Familiarity with compliance standards and regulatory requirements related to cloud security.
Skilled in integrating security solutions with cloud service providers to ensure robust protection.
Has very strong SME expertise in Microsoft Entra Inbound Provisioning (including custom expressions), Lifecycle Workflows, Access Packages, and Access Reviews.
Possesses the ability to integrate Azure Logic Apps and Azure Functions into the Identity Governance (IGA) ecosystem (Lifecycle Workflows and Access Packages) to enable non\-out\-of\-the\-box functionality, which is expected to form a significant portion of the role. learn.microsoft.com , docs.azure.cn
Demonstrates capability to independently design and develop Azure Logic Apps and Azure Functions aligned to IGA use cases and business requirements.
Has experience in extending Microsoft Entra schema and effectively utilizing custom attributes across groups, Access Packages, Logic Apps, and Azure Functions for advanced identity lifecycle scenarios.
Additional Information
The candidate should have minimum 5 years of experience in Microsoft Azure Active Directory.
Is capable of designing innovative and customized solutions to meet complex client requirements—for example, integrating non\-connected applications by extracting entitlements (e.g., via scheduled jobs), modeling them within Entra IGA, and establishing reverse integration for entitlement management using APIs, Logic Apps, or ServiceNow integrations. docs.azure.cn
Engages closely with stakeholders and drives solution design discussions, bringing creativity and problem\-solving skills to address integration and governance challenges within client environments.