The Role: Our client is looking for a highly skilled Senior IAM Engineer with expertise in Identity and Access Management (IAM), Active Directory (AD), and Microsoft Entra controls and services. The Engineer will play a key role in aiding operational resilience, security, and stability of identity directory services. This hands-on technical position requires advanced knowledge in configuring and maintaining IAM systems to enforce IT & security controls. Responsibilities: Maintain, administer, and optimize Active Directory and Microsoft Entra environments to ensure operational efficiency and security. Implement and manage Group Policy Objects (GPOs) and AD Certificate Authority services to enforce security and compliance requirements. Oversee identity directory services to ensure configurations are aligned with best security practices, partnering with Cyber Defense teams to address vulnerabilities and misconfigurations identified from vulnerability scans and pen tests. Utilize automation and change management tools, including Quest Active Roles and Quest Change Auditor, for streamlined and standardized IAM processes. Implement IT security controls to enforce least privilege principles, ensuring secure IAM frameworks and processes. Manage and configure Privileged Access Management (PAM) solutions, including BeyondTrust, Entra Privileged Identity Management, and Silverfort. Support identity governance and role-based access management in compliance with regulatory requirements. Act as senior point of escalation to aid resolution of IAM-related issues efficiently, ensuring minimal disruption to operations. Aid in the maintenance of documentation for IAM processes, policies, and configurations to support operational continuity and maintain strong configuration management of our critical systems. Required: Strong proficiency with Active Directory, including management of GPO policies and AD CA. Hands on experience with Microsoft Entra, including MFA, Single Sign On and adaptive access controls Expertise in implementing and managing IAM security controls to uphold best practices Strong understanding of identity governance and role-based access control methodologies. Experience troubleshooting identity related operational issues and security vulnerabilities. Excellent problem-solving skills and ability to work autonomously in a contractor capacity. Practical experience working with Privileged Access Management tools such as BeyondTrust, Entra Privileged Identity Management, and Silverfort. Experience with identity threat detection methodologies desirable Automate identity-related tasks using PowerShell, Graph API, or automation platforms. Create and maintain technical documentation, runbooks, and standards. Preferred Qualifications: Relevant industry certifications e.g. relevant Microsoft Certification, CISSP Familiarity with cloud security frameworks for Azure, AWS, or Google Cloud. Experience with identity threat detection and response methodologies Skills: Identity and Access Management (IAM) Active Directory (AD) Microsoft Entra controls and services