Overview
Security Consultant (w/m/x) with a focus on Microsoft Identity Manager at Avanade in Neuss, North Rhine-Westphalia, Germany.
Avanade is a worldwide provider of digital and cloud services, business solutions, and design-oriented applications. As a joint venture of Microsoft and Accenture, we are the largest consulting company for Microsoft technologies, supporting customers in Cloud, Modern Workplace, Business Applications, Data & AI, and Security with a #PeopleFirst culture.
Responsibilities
* Design & implementation of Identity‑Governance processes (JML, Birthright‑Access, recertifications, request/approval workflows) in Microsoft Entra ID Governance, based on experience level.
* Lifecycle & provisioning: model identities, roles (RBAC/ABAC), and policies; integrate HR systems (e.g., SAP/Workday) and target systems via SCIM/REST/AD/Entra including connector design.
* Implement access reviews & entitlement management: campaigns, SoD rules, delegations, recertification processes; automate controls.
* Privileged access & compliance: integrate with PIM, logging/monitoring, and regulatory requirements (e.g., ISO27001, SOX, NIS2/DORA as applicable).
* Adoption & enablement: workshops, guidelines, operating concepts; lead workstreams, mentor colleagues, and ensure quality through concept/design reviews (depending on seniority).
Qualifications
* Must‑haves (level-independent):
* Interest in Identity & Access topics, structured working style, and willingness to learn.
* Basic knowledge of Microsoft Entra ID, ADDS, and common auth/authz protocols (LDAP, Kerberos, OAuth2.0, OIDC, SAML).
* For junior profiles: initial hands-on experience in IGA or IAM (e.g., access reviews, access requests, provisioning) from studies, internships, or 1–2 years of work experience.
* Fundamental skills in PowerShell/SQL or REST/SCIM APIs and understanding of JML processes.
* For experienced profiles (Senior/Architect):
* Multiple years of end-to-end design & implementation experience of an IGA suite (Microsoft Entra ID Governance, One Identity, SailPoint, Omada) including data/role modeling, SoD, access reviews, lifecycle workflows.
* Governance frameworks (RBAC/ABAC), policy & control design, PIM integration, automation (PowerShell, rules/policies, REST), and run/transition concepts.
* Consulting skills: customer workshops, architecture/decision support, stakeholder management.
About You
* You think in processes and data models, translate business requirements into technical solutions, and explain complex concepts clearly.
* Willingness to collaborate with customers in small or large Avanade teams.
* Fluent in German and English (min. B2/C1).
* Travel willingness as agreed.
What You’ll Do
* Design & implement Identity‑Governance processes; model identities and roles; integrate HR systems and target systems via SCIM/REST/AD/Entra including connector design.
* Lifecycle & provisioning: policy design, HR system integration, and deployment of RBAC/ABAC models.
* Access reviews & entitlement management: campaigns, SoD rules, delegation, and certification processes; automate controls.
* Privileged access & compliance: coordination with PIM, logging/monitoring, and regulatory considerations (as applicable).
* Adoption & enablement: workshops, guidelines, operating concepts; lead relevant workstreams and provide mentoring and quality assurance.
Learn more
* Avanade Security – Are you Doing Enough?
* EDF Client Story | Avanade
* A Catastrophic Cyber Event. Are You Ready?
* The New World of Decentralized Identity
Benefits and Culture
* Direct access to manufacturer support and internal knowledge bases.
* Opportunity to work with Microsoft’s Global Alliance Partner of the Year (14 years running), with extensive development and training opportunities (minimum 8 hours per year for training and paid certifications).
* Collaborate with technically skilled colleagues worldwide.
* A Career Adviser to support your growth.
* Motivated and supportive teammates who are genuinely invested in your success.
Inclusion & Diversity: Learn more on our Inclusion & Diversity page.
#J-18808-Ljbffr