Security + Azure AD + Identity

Company Description Digitrix Software LLP is an offshore IT outsourcing, consulting, and software development company based in India, serving SMB clients across the USA, UK, Canada, Australia, Europe, and India. The company delivers end-to-end services including software design, programming, consulting, and maintenance, with a strong focus on AI solutions, chatbot development, cloud services, and custom application development. Digitrix Software LLP builds affordable, high-performing offshore teams to help organizations scale and innovate efficiently. With a track record of successful projects across diverse industries, the team combines technical expertise and a robust programming background to deliver reliable, cost-effective solutions. The company is committed to long-term client partnerships and uses technology to drive measurable business growth.

Role Description This is a full-time, hybrid role based in Bengaluru, with flexibility for partial work from home. The Security + Azure AD + Identity Specialist will be responsible for designing, implementing, and managing identity and access management (IAM) solutions using Azure Active Directory and related Microsoft security technologies. Day-to-day tasks include configuring and monitoring conditional access policies, MFA, SSO integrations, and role-based access controls, as well as managing user lifecycle, permissions, and security groups. The role involves assessing security posture, performing regular security reviews, responding to incidents, and collaborating with infrastructure and application teams to ensure secure integration of cloud and on-premises systems. The specialist will also document configurations and procedures, support audits and compliance requirements, and communicate technical updates and risks clearly to stakeholders.

Qualifications

• Strong foundation in Cybersecurity and Information Security, including identity and access management, threat mitigation, and security best practices.
• Hands-on experience with Network Security concepts such as firewalls, VPNs, secure connectivity, and segmentation in cloud and hybrid environments.
• Understanding of Physical Security considerations as they relate to overall security posture and compliance.
• Effective Communication skills to collaborate with cross-functional teams, explain technical concepts to non-technical stakeholders, and create clear documentation.
• Practical experience with Azure Active Directory (Entra ID), conditional access, MFA, SSO (SAML/OAuth/OIDC), and role-based access control.
• Familiarity with Microsoft 365 security features, Azure security tools (e.g., Defender, Security Center), and log analysis using tools such as Azure Monitor or SIEM solutions.
• Bachelors degree in computer science, Information Security, or a related field, or equivalent practical experience.
• Relevant certifications such as AZ-500, SC-300, Security+, or equivalent are preferred.
• Ability to work independently and as part of a team in a fast-paced, client-focused environment.

Role Description: As a Microsoft Security Cloud Solution Architect, you will be a key technical resource for customers, delivering You will:

Join a highly motivated team of industry experts.

Preview and work with cutting-edge Microsoft technologies.

Visit customers to train and share development and industry expertise.

Build strong customer relationships and ensure technical deliveries align with project milestones.

Be part of a thriving technical community focused on improving customer experience and collaboration.

Gain access to Microsofts consulting practice and product group support.

Continuously learn and grow professionally.

Analyze and resolve complex technical problems.

Maintain and extend certifications and contribute to best practices for Microsoft Teams and related technologies.

Demonstrate strong communication skills and strategic relationship-building with customers.

Possess excellent technical writing, presentation, and training capabilities.

Core Identity & Hybrid Infrastructure

Directory Services: Active Directory Domain Services (ADDS), Microsoft Entra ID (Azure AD).

Hybrid Models: Identity Synchronization, Entra Connect Sync and Entra Connect Cloud Sync, Pass-through Authentication (PTA), Password Hash Sync (PHS).

Federation: ADFS, SAML, OAuth, OpenID Connect, WS-Fed. Connectivity: Azure AD App Proxy, Device Registration (Hybrid/Cloud).

Authentication & Access Management

Modern Auth: Single Sign-On (SSO), Seamless SSO, FIDO2, Windows Hello for Business (WHFB).

Secure Access: Multi-Factor Authentication (MFA), Passwordless Authentication, Conditional Access Policies. External Identities: B2B, B2C, Microsoft Entra Verified ID.

Application Integration: App Registrations, Enterprise Applications, Consent Frameworks.

Security & Threat Mitigation

Zero Trust Architecture: End-to-end security value proposition and implementation.

Identity Protection: Risk-based policies and Identity Protection monitoring.

Threat Landscape: Mitigation of Pass-the-Hash, Golden Ticket, and Ransomware. Hardening: Securing Privileged Access (SPA), Credential Theft Mitigations, PKI.

Governance & Permissions

Access Control: Role-Based Access Control (RBAC).

Identity Governance: Permissions Management, Entitlement Management.

Access Reviews.

Privileged Identity: Entra Privileged Identity Management.

Architectural Strategy

Design: Running Architectural Design Sessions (ADS).

Alignment: Mapping business goals to technical environment constraints.

Governance: Design-led implementation planning.