MetLife

The Team You Will Join:

You’ll be part of the Authentication Services engineering team, responsible for enterprise-wide identity and access management (IAM) solutions across both on-premises and cloud platforms. The team secures critical systems by delivering seamless authentication experiences globally, supporting millions of daily authentication requests. Working collaboratively across security domains, you’ll deploy and maintain modern technologies that support authentication services. 

Job Overview:

We are looking for an exceptional Lead Authentication Service Engineer with a specialized focus on Cloud Identity and Access Management (IAM) using Microsoft Entra ID for a large enterprise. As a key contributor in our cloud team, you will be responsible for the enhancing the strategy, design, implementation, and ongoing management of our identity and access management solutions in a complex, multi-tenant global environment. This role requires deep technical expertise and strategic vision to ensure our cloud identity solutions are secure, scalable, and aligned with our business needs.

Key Responsibilities:

Cloud Identity & Access Management Strategy

· Lead the strategic development and execution of the organization's Cloud IAM strategy, focusing on Microsoft Entra ID.

· Design and implement scalable IAM solutions that support a global, multi-tenant architecture.

· Define and enforce IAM policies, standards, and best practices to secure cloud resources.

· Architect and manage Entra ID services including single sign-on (SSO), and multi-factor authentication (MFA).

· Ensure seamless integration of Entra ID with on-premises systems, third-party SaaS applications, and other cloud services.

· Develop and maintain architecture documentation and diagrams for identity and access management solutions.

Security & Compliance:

· Implement and manage Conditional Access policies, identity protection, and zero-trust principles across cloud environments.

· Conduct regular security audits, identity lifecycle management, and compliance assessments to ensure adherence to global standards such as GDPR, PCI, etc.

· Collaborate with security and compliance teams to maintain and improve the security posture of our cloud IAM systems.

Multi-Tenant Management:

· Oversee the deployment and management of Entra ID across multiple tenants, ensuring security, compliance, and efficient access management.

· Optimize IAM processes for multi-tenant environments, including application onboarding/offboarding, access reviews, and privilege management.

Collaboration:

· Collaborate with cross-functional teams, including security, IT, and business units, to deliver IAM solutions that meet evolving business needs.

· Participate in incident response and resolution for IAM-related issues, ensuring minimal impact on business operations.

Required Skills

· 7+ years of experience in IT, with at least 3 years focused on cloud identity and access management in Microsoft Azure environments.

· Extensive experience with Entra ID (Azure AD) and deep knowledge of identity management principles, including SSO, MFA, RBAC, and Conditional Access.

· Currency with industry trends and emerging technologies in IAM and cloud security, bringing innovative solutions to the organization.

· Experience with IAM tools and technologies, including but not limited to Entra ID, B2B, B2C, Entra Connect, and third-party identity providers.

· Experience with Log analytics and SIEM tools such as Splunk or QRadar.

Preferred Skills

· Bachelor’s degree in computer science, Information Technology, or a related field. Advanced degree preferred.

· Solid understanding of cloud security frameworks and zero-trust architecture.

· On premise cloud experience preferred.

· Strategic thinking with the ability to lead large-scale IAM initiatives.