We are looking for an experienced Identity Architect to lead and manage an Active Directory (AD) migration project and optimise our identity and access management (IAM) solution. The ideal candidate will have extensive experience with Active Directory Domain Services, Active Directory Certificate Services, Entra ID, Conditional Access Management, Multi-Factor Authentication (MFA), Single Sign-On (SSO), and Privileged Access Management. Experience with Azure is highly desired. Key Responsibilities Active Directory Migration: • Lead the planning, design, and execution of the Active Directory migration project, ensuring minimal disruption to business operations. Identity and Access Management (IAM): • Review and optimise existing Active Directory Domain Services (AD DS) and Active Directory Certificate Services (AD CS) to ensure secure, resilient and efficient access management. • Manage and optimize Entra ID for identity and access management, including hybrid identity scenarios. Conditional Access Management: • Define and implement Conditional Access policies to secure access to resources based on real-time risk assessments. • Collaborate with security teams to ensure alignment with the organization’s security posture and compliance requirements. Multi-Factor Authentication (MFA) and Single Sign-On (SSO): • Integrate MFA and SSO with various platforms, including cloud services, on-premises applications, and third-party systems. Windows Hello for Business: • Manage Windows Hello for Business to provide secure, passwordless authentication for users. Collaboration and Support: • Work closely with IT, security, and application teams to ensure that identity solutions align with business needs and security requirements. • Provide technical leadership and guidance to engineers and administrators on IAM best practices and technologies. Documentation and Compliance: • Develop and maintain comprehensive documentation for identity architecture, configurations, and processes. • Ensure compliance with industry standards, regulatory requirements, and internal policies related to identity and access management. Qualifications • Bachelor's degree in Computer Science, Information Technology, or a related field. • 8 years of experience in identity and access management, with a focus on Active Directory and related technologies. • Proven experience managing and executing Active Directory migration projects. • Expertise in Active Directory Domain Services (AD DS), Active Directory Certificate Services (AD CS), and Entra ID (Azure AD). • Strong knowledge of Conditional Access Management, Multi-Factor Authentication (MFA), and Single Sign-On (SSO). • Experience with Windows Hello for Business implementation and management. • Relevant certifications (e.g., Microsoft Certified: Identity and Access Administrator Associate, Microsoft Certified: Azure Solutions Architect Expert) are highly desirable.