At KeyData Cyber, we're shaping the future of identity security. Recognized by Gartner and KuppingerCole as a leading IAM professional services firm, we specialize exclusively in designing, deploying, and managing end-to-end Identity and Access Management programs for organizations across North America.

With 20 years of experience, 50M+ identities managed, and 1,000+ successful deployments, our team is our strongest asset and is built by design to help clients protect critical infrastructure, enable digital transformation, and ensure compliance with confidence.

We deliver comprehensive solutions across IAM domains, including:

• Workforce IAM (Access Management, Identity Governance and Administration, Privileged Access Management)
• Consumer IAM (Identity Verification, Authentication and Access, Threat Detection) in highly regulated industries.

If you're ready to grow your career alongside some of the industry's best, come join us — you're key to our success

We are seeking a highly skilled Senior IAM Engineer specializing in Microsoft Entra ID (formerly Azure Active Directory) to design, implement, and manage our cloud-based and hybrid identity infrastructures.

In this role, you will serve as the subject matter expert for our identity ecosystem, ensuring seamless user access while maintaining a robust security posture. You will be responsible for defining access management strategies, enforcing governance policies, and securing our enterprise resources across hybrid environments.

Location: Canada, Remote

Employment Type: 6 months - Contract Role

Vacancy Status: Immediate Opening: This position is currently available, and hiring is underway.

What You'll Do

Key Responsibilities

1. Identity Infrastructure & Hybrid Management

• Design, deploy, and maintain Microsoft Entra ID and hybrid identity architectures, including Entra Connect / Cloud Sync environments.
• Manage corporate directory integration between on-premises Active Directory (AD) and Entra ID.
• Oversee Enterprise Applications, App Registrations, and Service Principals, ensuring secure API permissions and consent frameworks.
• Troubleshoot complex authentication, synchronization, and replication issues across hybrid infrastructure.

2. Access Management & Security Policies

• Design and enforce zero-trust security architectures using Entra Conditional Access Policies, risk-based policies, and Continuous Access Evaluation (CAE).
• Deploy and manage Multi-Factor Authentication (MFA), Passwordless authentication, and Windows Hello for Business.
• Configure and maintain Privileged Identity Management (PIM) to enforce just-in-time (JIT) and just-enough-access (JEA) for administrative roles.
• Implement Entra ID Governance, including Access Reviews, Entitlement Management (Access Packages), and Lifecycle Workflows to automate user onboarding/offboarding.

3. Automation, Monitoring & Compliance

• Automate routine identity management tasks using PowerShell, Microsoft Graph API, and Azure Automation runbooks.
• Monitor identity security logs using Entra ID Protection, Log Analytics, and integrate logs with enterprise SIEM platforms (e.g., Microsoft Sentinel).
• Conduct regular access audits to ensure compliance with corporate policies, regulatory standards (e.g., SOC2, ISO 27001), and identity best practices.

Required Qualifications

• Education: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field (or equivalent professional experience).
• Experience: 5+ years of dedicated experience in Identity and Access Management (IAM), with at least 3 years focusing heavily on Microsoft Entra ID / Azure AD.
• Technical Expertise:
  • Deep understanding of modern authentication protocols (SAML 2.0, OIDC, OAuth 2.0, WS-Fed, FIDO2).
  • Hands-on experience configuring Entra ID Governance tools (PIM, Access Reviews).
  • Strong proficiency in scripting and automation using PowerShell and interfacing with the Microsoft Graph API.
  • Solid understanding of network security concepts relating to identity (e.g., Managed Identities, Application Proxy, Private Access).

Preferred Certifications & Skills

• Microsoft Certifications: * Microsoft Certified: Identity and Access Administrator Associate (SC-300)
  • Microsoft Certified: Cybersecurity Architect Expert (SC-100) or Azure Solutions Architect Expert (AZ-305)
• Industry Certifications: CISSP, CISA, or CCSP designations are highly valued.
• IGA Integration: Familiarity with integrating Entra ID with governance platforms (such as SailPoint Identity Security Cloud or IdentityIQ) for advanced identity lifecycle workflows is a strong plus.
• Soft Skills: Strong analytical mindset, excellent documentation skills, and the ability to collaborate effectively with security compliance officers and infrastructure teams.

Compensation:

The hourly rate for this position is $60–$75 CAD per hour. This is a 6-month, full time contract role, working 40 hours a week. At KeyData Cyber, we are committed to fair and competitive compensation. We regularly benchmark across positions, industries, sectors, and experience levels, ensuring our approach recognizes each person's unique strengths, contributions, and the value they bring to the organization. #LI-RR1

Why You'll Love Working Here

At KeyData Cyber, we put people first, valuing learning, growth, and work-life balance. We offer extensive opportunities to advance your career through leading digital identity projects across North America. Our culture is built on respect, inclusion, and equal opportunity for everyone.

Accessibility & Accommodations

If you require accommodation due to a disability at any time during the recruitment and/or assessment process, please contact Talent Acquisition , and we will make all reasonable efforts to accommodate your request.

Fraud Prevention & Identity Verification

We may use information provided during the application process to help prevent fraud and verify identity. These checks may be conducted automatically through trusted third‑party service providers as part of our standard application screening process.

BrightHire technology is used during the preliminary interview stage for recording, transcription, and candidate evaluation as part of our hiring process.

Apply now to join the KeyData Cyber team and be part of our mission to secure the future of digital identity across North America.