Identity Engineer for designing, implementing, and governing enterprise-scale Microsoft Entra ID solutions for a banking client - 99331-1

Contract duration: 12 months

Location and work schedule - Bay street, Toronto - Hybrid - every Tuesday/week & 1 Friday per month

Target Start Date: March 23rd

Job Description:

• The Senior Systems Consultant will serve as an expert-level engineer within bank's Identity Directory & Tools team, responsible for designing, implementing, and governing enterprise-scale Microsoft Entra ID solutions. This role requires deep technical mastery of Entra ID architecture, components, security controls, workload identities, lifecycle management, automation, and integration with Microsoft Graph, PowerShell, and enterprise IAM tooling.
• This individual must demonstrate strong engineering leadership, the ability to independently drive initiatives, provide recommendations, challenge assumptions, and present confidently to peers and senior leadership (up to Sr. Director level). This is not a passive, task-based role it requires a proactive SME who can identify issues, propose solutions, and execute end-to-end remediation and enhancement work.

Selling points of the positions:

• Enterprise‑scale Entra ID engineering work
• Highly technical environment with other SMEs
• Key role in major identity modernization and security initiatives
• Strong visibility with Microsoft and external security vendors
• Long contract with strong extension probability

Project details:

A series of Microsoft Entra ID security and configuration remediation initiatives,

• Reviewing Microsoft‑identified remediations
• Assessing impact to current configurations
• Designing and recommending remediation approaches
• Implementing changes (often after‑hours)
• Workload Identity Lifecycle Management improvements
• Entra ID Lifecycle Management improvements
• Ensuring alignment with enterprise identity standards
• Partnering with third‑party security vendors

Must Have Requirement:

• 10+ years progressive experience in identity engineering (ideal) Extensive hands‑on experience with:
• Workload Identities (critical skill)
• Identity governance & administrative units
• Conditional Access / Strong Auth / MFA
• Directory roles, permissions, role delegation
• Remediation planning & execution
• Global Admin-level operations
• PowerShell (advanced)

Experience with:

• Microsoft Graph / APIs
• SPNs & service principals
• Solid Active Directory understanding for hybrid alignment
• Experience supporting domain controllers, DNS, GPO concepts
• Able to review complex configurations
• Assess remediation impact to tens of thousands of identities
• Work with Microsoft and external vendors on escalations

Nice to have:

• Exposure to Zero Trust Identity security models
• Previous banking or enterprise regulated‑environment experience
• Experience supporting hybrid AD/Entra deployments
• Familiarity with large‑scale identity lifecycle processes
• Experience introducing new identity technologies to an enterprise

Interview Process: 2 Rounds - Virtual and In person