EY (Ernst & Young) — Senior Entra ID

Posted: 07-07-2026

Salary: ₹8 - ₹14 Lakhs/Annum Expected

Description:

EY Global Delivery Services is hiring a Senior Identity and Access Management (IAM) Consultant in Bangalore specializing in Microsoft Entra ID (formerly Azure Active Directory). In this client-facing position, you will lead the end-to-end design, implementation, and architectural configuration of identity structures for global customers. The role spans enterprise business-to-employee (B2E), business-to-business (B2B), and consumer-facing identity access management (CIAM / B2C) infrastructure. You will be responsible for defining conditional access rules, configuring federated single sign-on (SSO) protocols, enforcing Zero Trust blueprints, and mentoring junior engineers while driving technical inputs for incoming client RFP proposals.

Key Technologies:

Azure Active Directory, B2E, B2B, B2C, ADFS, Azure AD Connect, Azure AD Application Proxy, LDAP, Active Directory, SAML2.0, OIDC, OAuth2.0, WS-Fed, MSAL, Tomcat, IIS, Java, Python, PowerShell

Requirements:

  • Bachelor of Technology (B.Tech) or Bachelor of Engineering (B.E.) degree backed by excellent technical, interpersonal, and presentation skills.
  • 2–3 years of dedicated, professional hands-on work experience configuring, deploying, and supporting Microsoft Entra ID / Azure Active Directory solutions.
  • Completed at least 0–2 end-to-end enterprise platform implementations involving structural design, workspace customization, tenant creation, cloud subscription tracking, and resource group mapping.
  • Mastery integrating applications utilizing industry-standard authentication frameworks—specifically header-based setups, SAML 2.0, OpenID Connect (OIDC), OAuth 2.0, and WS-Federation protocols.
  • Deep technical exposure governing external tenant connections, managing B2B/B2C identity domains, building advanced custom XML policies via the Identity Experience Framework (IEF), and configuring social login/third-party identity provider overrides.
  • Practical deployment engineering knowledge covering ADFS (Active Directory Federation Services), Azure AD Connect sync engines, Azure AD Application Proxy portals, and legacy LDAP/Active Directory components.
  • Advanced familiarity setting up Conditional Access Policies, managing machine or secrets identities, configuring Privileged Identity Management (PIM) access elevations, and executing Zero Trust framework elements (such as passwordless authentication and fine-grained authorization).
  • Solid programming command using Python or Java, supplemented by robust Microsoft PowerShell scripting to automate identity updates. Baseline familiarity handling application web servers like Apache Tomcat and IIS, alongside troubleshooting cryptographic certificate renewals.
  • Proven experience executing client requirement gathering workshops, writing Business Requirement Documents (BRD), drafting High-Level / Low-Level Design (HLD/LLD) blueprints, creating Use Case Traceability Matrices, and contributing technical content for RFP proposals.
  • Actively contribute to EY's positive learning culture by reviewing junior staff deliverables, mentoring project resources, and supporting formal performance feedback reviews.
  • Professional industry security credentials such as CISSP, CISA, Azure Security Engineer Associate (AZ-500), or Microsoft Identity and Access Administrator (SC-300).

Important Notice:

This job description and related content are owned by EY (Ernst & Young). We are only sharing this information to help job seekers find opportunities. For application procedures, status, or any related concerns, please contact EY (Ernst & Young) directly. We do not process applications or respond to candidate queries.