Senior IAM & Enterprise Messaging Engineer (Entra ID)

Overview

TalentFish is casting a line for a Senior IAM & Enterprise Messaging Engineer to join a premier enterprise client in a highly visible, technical leadership role. This position is responsible for designing, implementing, and optimizing identity and messaging solutions across a complex hybrid environment.

You’ll serve as a technical lead across Identity & Access Management (IAM) and enterprise messaging platforms, ensuring secure, scalable, and compliant systems spanning on-premises and cloud infrastructure. This role is ideal for someone who thrives in large-scale environments and enjoys driving automation, stability, and continuous improvement.

What You’ll Do

• Lead the design and support of hybrid identity solutions across Active Directory and Entra ID (Azure AD)
• Manage and optimize Entra Connect / Azure AD Connect (sync and cloud sync)
• Implement and support SSO, federation (ADFS), and application proxy solutions
• Configure and manage Conditional Access and Multi-Factor Authentication (MFA)
• Own identity lifecycle management (onboarding, offboarding, role changes)
• Develop automation using PowerShell and Microsoft Graph APIs
• Design, support, and optimize Microsoft 365 / Exchange (Online & On-Prem) environments
• Implement and maintain email authentication and security protocols (SPF, DKIM, DMARC, DNS)
• Monitor and troubleshoot mail flow and enterprise messaging systems
• Support SCIM-based integrations with SaaS platforms
• Provide Tier 3 escalation support and lead root cause analysis
• Participate in incident response and security investigations
• Maintain technical documentation and operational runbooks
• Partner with infrastructure, security, and application teams on cross-functional initiatives

What You Bring

• 10+ years of experience in IAM and enterprise messaging within large-scale environments
• Deep expertise in:
  • Active Directory (multi-domain)
  • Entra ID (Azure AD) and hybrid identity architectures
• Strong experience with:
  • Microsoft 365 / Exchange (Online & On-Prem)
  • Entra Connect / Azure AD Connect
  • Conditional Access and MFA
• Hands-on expertise in PowerShell scripting and automation
• Experience with email security protocols (SPF, DKIM, DMARC)
• Strong understanding of authentication standards (SAML, OAuth, OpenID Connect)
• Proven ability to lead technical initiatives and support complex environments
• Strong troubleshooting skills across identity and messaging systems

Nice to Have

• Microsoft or identity/security certifications
• Experience in enterprise environments (3,000+ users, multi-domain/multi-tenant)
• Exposure to identity security and email security platforms
• Experience with Azure and/or AWS
• Familiarity with Entra External ID (Azure AD B2C)
• Strong documentation and communication skills

Compensation & Benefits

The expected salary range for this position is $95,500 – $150,000 annually, based on experience and qualifications. This role also includes a comprehensive benefits package, including health insurance, 401(k), and paid time off.

TalentFish is committed to pay transparency and equal opportunity. Compensation is aligned with applicable state and federal regulations.

EMAIL ME: lgironda@talentfish.com