Azure Active Directory Security Controls Architect

Summary

The job is for an AAD Infrastructure Security and Controls Senior Manager within the Information Security & Risk Management (ISRM) organization. The role involves managing Azure Active Directory, providing escalation support, serving as a technical subject matter expert, and ensuring proper security and controls in technology solutions. This is a 6-month project with the possibility of going full-time for the right candidate.

Requirements

• 8+ years of ISRM experience
• Minimum of 4 years experience where they have maintained Active Directory
• Enterprise/Domain Admin and/or Azure Global Admin responsibilities
• Knowledge of Azure MFA integration solutions
• Understanding of Microsoft Azure tenants/subscriptions
• Deep understanding of federation technologies (WS-Fed, OAuth, SAML, etc.)
• Strong working knowledge of Windows 2008, 2012 and 2016 operating systems platforms, DNS, networks, DMZs, firewalls, network security zones and proxies
• Strong risk management skills including confidence to vocalize concerns which may jeopardize integrity of on-premise Active Directory
• Minimum of 3 years of related Information Risk Management Experience
• Experience with tools and applications managing Governance, Risk and Compliance
• Effectively works with virtual, global teams – including diverse groups of people with varied backgrounds and cultural experiences
• Effectively fills in for a senior-level vacancy

Responsibilities

• Work within the architecture and engineering organizations, interacting with peer teams and partner groups, scaling and deploying improvements, facilitating integration efforts with Azure Active Directory identities and services within the enterprise
• Serve as the Information and Security Risk Management (ISRM) expert in supporting internal TS teams, projects and internal control audits
• Analyze, design and implementation of Azure Active Directory, and its integrations with other client applications and systems such as AD DS, Ping Office 365 and Service Now
• Provide escalation support for Azure AD
• Provide subject matter expertise to TS infrastructure project teams where IT risk management issues are involved, have potential implications for the business, and/or impact regions or functions, regulatory areas or technology platforms
• Ensure proper security and controls are built into TS tools, vendors, applications and services by providing technical expertise, evaluation, assessment and consultation
• Proactively assess the impact of regulatory and other security and internal control changes on TS and IT processes and advises senior management on the implications of costs, performance issues, risks and business needs
• Analyze technically complex business and competitive issues and discern their implications for risk management
• Develop and maintain business partner relationships with GTS IT and Business stakeholders
• Accountability for Security and Internal Controls and highly technical GTS Infrastructure projects

Preferred Qualifications

• MS and/or advanced degree preferred
• Microsoft Certifications preferred
• Information Security & Risk Management certifications preferred
• Working knowledge of COBIT and / or ITIL is preferred
• Knowledge of key business processes preferred
• GxP background an asset (desirable, but not required)
• Industry experience with Information Security, Risk Management, Risk Assurance