This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more.

Role Description

The Senior Information Security Engineer will lead the design, implementation, and management of identity and access solutions using Microsoft Entra (Entra ID/Azure AD, Entra External ID/B2C, and related components). This role ensures secure, scalable, and user-friendly identity experiences across internal and external platforms.

This is a full time, exempt role.

In this role, you will:

• Design and implement scalable identity solutions with Entra ID and B2C.
• Integrate cloud and on-prem systems for SSO, MFA, and Just-In-Time provisioning.
• Deploy secure authentication flows (OAuth2, OpenID Connect, SAML, Conditional Access).
• Build and maintain custom policies using Identity Experience Framework (IEF).
• Manage TrustFrameworkPolicy XML files, REST API integrations, claims transformations, and multi-step authentication.
• Customize user journeys (sign-up, sign-in, password reset, profile editing).
• Troubleshoot and optimize policies using Application Insights and B2C logs.
• Manage lifecycle processes (provisioning, de-provisioning, access reviews).
• Administer Privileged Identity Management (PIM), Access Packages, and Conditional Access.
• Ensure compliance with frameworks (NIST, ISO 27001).
• Stay current with Microsoft Entra roadmap and IAM technologies.
• Partner with application teams and stakeholders to deliver secure identity solutions.
• Integrate Entra ID with third-party and on-prem systems.
• Provide technical leadership and mentor junior engineers.

Qualifications

• 5+ years in identity engineering, SDLC-based solution development, and Active Directory support.
• Bachelor’s degree in computer science, Information Technology, or related field, or the equivalent combination of education, training and experience.
• Deep knowledge of Microsoft Entra ID and B2C, including custom policy development.
• Strong understanding of IAM frameworks, governance, and modern authentication protocols.
• Experience with hybrid identity, Active Directory, and troubleshooting multi-tenant environments.
• Proficiency in PowerShell, Kusto, Azure CLI, automation, and secure API solutions.
• Familiarity with audit, log analytics, DevOps, monitoring, and reporting in Azure/Entra.
• Background in architecture, IAM roadmaps, and exposure to AI/ML for technology enhancements.
• Strong problem-solving, communication, and documentation skills.
• Ability to lead, mentor, and collaborate across teams.
• Skilled in presentations, training, and customer-focused troubleshooting.
• Must be eligible to work in the US without requiring sponsorship now or in the future (i.e Lawful Permanent Residence or US Citizen).

Requirements

• Microsoft certifications (SC-300, SC-100, AZ-500).
• Knowledge of CI/CD pipelines, DevSecOps, hybrid identity, and ADFS.

Benefits

• Medical, dental, vision, life, and disability insurance.
• 401K with a company match.
• Tuition reimbursement.
• PTO.
• Company paid holidays.
• Flexible work arrangements.
• Cultural Awareness Day in support of IDE.
• On-site medical/wellness center (Worcester only).