Job Description

###

Job Information

Job Type


Permanent
Date Opened


10/23/2025
Work Shift


Day Shift
Work Experience


1 -3 years
Industry


IT Services
Work Location


Chennai - OMR
State/Province


Tamil Nadu
City


Mambalam
Zip/Postal Code


600113
Country


India
###

About the Role

We're looking for a hands-on junior engineer to join our Infrastructure & DevOps function, supporting identity services across hybrid cloud. You'll help operate, secure, and improve Microsoft Entra ID (formerly Azure AD), traditional Active Directory, and related identity platforms that integrate with a wide range of service provider (SP) applications used to deliver our cloud hosting service.



You'll work closely with experienced engineers across Infrastructure, DevOps, and Security, gaining exposure to modern identity patterns (e.g., Conditional Access, SSO, SCIM provisioning), automation (PowerShell/Terraform), and platform reliability in a service-provider context.

Key Responsibilities

Identity Operations & Support

Operate and support

Microsoft Entra ID

and

Active Directory

in a hybrid environment (multi-tenant concepts beneficial). Manage

user/group lifecycle

,

access policies

,

Conditional Access

,

MFA

,

PIM

,

SSPR

, and

role assignments

. Support

AD DS

core services:

DNS

,

Sites & Services

,

GPOs

, OU structure, and

Kerberos/NTLM

fundamentals. Maintain

hybrid sync

using

Entra Connect

or

Cloud Sync

; assist in ADFS decommissioning and app migrations to modern auth.

Application Integrations (SP Apps & SaaS)

Configure and support

SSO

for line?of?business and SP applications via

SAML

,

OpenID Connect

, and

OAuth 2.0

. Contribute to

automatic provisioning

using

SCIM

where supported. Collaborate with application owners to document integration patterns, certificates, and claims mapping.

Security & Compliance

Implement and monitor

Conditional Access

baselines, risky sign-in reviews, and access reviews. Support federation, certificate lifecycle, and secrets hygiene; collaborate on incident response and service hardening. Assist with identity threat protection and monitoring (e.g.,

Defender for Identity

,

Sentinel

basics).

Automation & Platform Engineering

Write and maintain

PowerShell

scripts for identity operations, reporting, and configuration-as-code. Contribute to

Terraform

/IaC modules for Entra/AD where appropriate. Use

Git

/

Azure DevOps

/

GitHub Actions

for version control, code review, and CI workflows.

Reliability & Service Delivery

Participate in incident, problem, and change management (ITIL?aligned). Support monitoring, alerting, capacity, and performance baselines for identity services. Join an

on-call

rota (after training), with clear runbooks and escalation paths.

Essential Skills & Experience (Junior Level)

1-2 years

experience in a support/operations role covering

Entra ID

and/or

Active Directory

in a

hybrid

setup. Working knowledge of: +

Entra ID

: tenants, users, groups, roles,

Conditional Access

,

MFA

, app registrations, enterprise apps, basic

PIM

.
+

Active Directory

: user/group management,

GPO

, OU structure,

DNS

, replication basics.
+

Hybrid identity

:

Entra Connect

/

Cloud Sync

concepts, attribute flow, UPN, soft/hard matching.
+

SSO

protocols:

SAML

,

OIDC

,

OAuth2

(can implement from vendor docs).
+

PowerShell

for admin tasks and reporting; ability to read/modify scripts.

Understanding of

identity security fundamentals

: least privilege, conditional access patterns, passwordless/MFA. Familiar with

ticketing/ITIL

processes (incident/change/problem) and documenting runbooks.
###

Requirements

Nice to Have

Exposure to

SCIM

provisioning, claims transformation, and certificate/certificate rollover. Basics of

Microsoft Graph API

,

MSAL

, or

Graph PowerShell

. Experience with

Terraform

(AzureRM / Entra) or ARM/Bicep for identity-related resources. Knowledge of

Defender for Identity

,

Entra ID Protection

,

Sentinel

queries (KQL basics). Experience with non?Microsoft IAM (e.g.,

Okta

,

SailPoint

,

One Identity

,

Ping

) in SP contexts. Familiarity with

networking fundamentals

(firewalls, reverse proxies, WAF) and how they intersect with auth flows.

Certifications

(any):

SC?300

,

MS?102

,

AZ?104

,

Security+

,

ITIL Foundation

.

Core Competencies

Customer focus

in a service-provider model with clear SLAs/OLAs.

Structured troubleshooting

and strong documentation habits.

Security-first mindset

with attention to detail and change discipline.

Collaboration & communication

across Infra, DevOps, and SecOps teams.

Continuous learning

and curiosity about modern identity patterns.

Success Measures (First 6-12 Months)

Meets agreed

SLAs

for incident and request handling related to Entra/AD. Delivers

2-3 automation improvements

(e.g., PowerShell scripts, small Terraform modules). Successfully implements

3-5 SSO integrations

(SAML/OIDC) with tested failover and documentation. Helps reduce identity?related

incident repeat rate

and improves

change success rate

. Maintains

zero critical audit findings

for delegated identity tasks and access reviews.

Tools You'll Use Here

Microsoft Entra ID

,

Active Directory

,

Group Policy

,

Entra Connect/Cloud Sync

Azure Portal

,

Entra Admin Center

,

AD Users & Computers

,

Group Policy Management

PowerShell

,

Git

,

Azure DevOps/GitHub

,

Terraform

(where applicable)

Microsoft Graph PowerShell/API

(introductory level)

Defender for Identity

,

Sentinel

(introductory level) * Ticketing/ITSM (e.g.,

ServiceNow

,

Jira

) and collaboration tools (e.g.,

Teams

,

Confluence

)