IAM Senior Engineer - Active Directory/Entra ID, Hewlett Packard Enterprise

Hewlett Packard Enterprise

Location:
India, Bangalore

Category:
IT - Administration

Contract Type:
Not provided

Salary:

Not provided

Save Job

Apply Position

Job Description:

HPE Global IT is seeking a highly skilled Senior Active Directory (AD), Entra ID Engineer with 10+ years of IT or cybersecurity experience to join our global Cybersecurity organization. This role is critical to designing, implementing, and securing hybrid identity infrastructures that enable Zero Trust, cloud transformation, and regulatory compliance.

Job Responsibility:

Engineer, deploy, and optimize Active Directory, Entra ID, and Azure identity services across enterprise-scale hybrid environments
Design and manage multi-forest AD architectures, including schema extensions, replication, delegation, and hardening
Implement and maintain cross-domain and cross-tenant synchronization between AD and Entra ID using Entra Connect or Cloud Sync
Engineer secure authentication and federation flows leveraging Kerberos, NTLM, SAML, OIDC, and OAuth2
Implement and enhance conditional access, MFA, passwordless, and FIDO2 authentication methods in Entra and Azure environments
Support Zero Trust Directory Security through tiered administration, least privilege, and delegated access controls
Partner with cloud and infrastructure teams to ensure secure integration of Azure resources with enterprise identity services
Maintain and secure domain controllers, DNS, DHCP, and Group Policy Objects (GPOs) across global environments
Manage Azure AD tenants, subscriptions, and resource access controls (RBAC, PIM, Entra roles)
Integrate on-prem AD with Azure workloads, Microsoft 365, Intune, and other SaaS applications
Automate operational tasks using PowerShell, Graph API, and Azure Automation
Support incident response, directory health checks, replication analysis, and disaster recovery procedures
Collaborate with IAM, PAM, and Cloud Security teams to align identity operations and cloud governance
Implement and maintain security baselines, privileged access models, and directory hardening for both AD and Azure environments
Conduct periodic reviews of GPOs, ACLs, and admin rights to prevent privilege escalation and lateral movement
Integrate directory and Azure logging with SIEM/SOAR platforms for continuous monitoring and anomaly detection
Ensure directory and Azure controls meet regulatory and audit requirements (SOX, FedRAMP, ISO 27001, etc.)
Collaborate with cybersecurity architects to evaluate and mitigate identity-related vulnerabilities
Work with enterprise architects, IAM, and cloud teams to align directory and Azure services with enterprise identity strategy
Drive modernization and automation of directory and Azure identity operations
Provide technical mentorship and guidance to junior engineers and peer teams on AD, Entra, and Azure identity practices
Contribute to roadmap planning, documentation, and adoption of new Azure identity and governance features

Requirements:

Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience)
10+ years of IT or cybersecurity experience
7+ years focused on AD, Entra ID, and Azure identity engineering in enterprise-scale environments
Deep hands-on experience managing multi-forest AD environments (schema, replication, delegation, GPOs, DNS, DHCP)
Strong expertise with Entra ID and hybrid identity integration (Entra Connect / Cloud Sync, federation, SSO)
Hands-on experience with Azure governance, RBAC, PIM, and access policy enforcement
Experience implementing conditional access, passwordless, and phishing-resistant MFA in Entra and Azure
Proficiency in PowerShell scripting, Graph API, and Azure automation for identity management and reporting
Solid understanding of authentication protocols (Kerberos, NTLM, LDAP, SAML, OIDC, OAuth2)
Familiarity with Zero Trust, tiered admin models, and directory hardening practices
Experience with directory and cloud security tools (PingCastle, Netwrix, Microsoft Defender for Identity, Entra ID Governance)

Nice to have:

Microsoft Certified: Identity and Access Administrator Associate
Entra ID Support Engineer
Azure Administrator Associate
Accountability
Action Planning
Active Learning
Active Listening
Agile Methodology
Bias
Business
Coaching
Creativity
Critical Thinking
Cybersecurity
Data Analysis Management
Design Thinking
Development Methodologies
Empathy
Follow-Through
Growth Mindset
Implementation Methodologies
Infrastructure Design
Long Term Planning
Managing Ambiguity

What we offer:

Health & Wellbeing benefits
Personal & Professional Development programs
Unconditional Inclusion environment
Comprehensive suite of benefits supporting physical, financial and emotional wellbeing

Additional Information:

Job Posted:
November 06, 2025

Employment Type:

Fulltime

Work Type:

On-site work

View All Jobs In This Company

Job Link Share:

IAM Senior Engineer - Active Directory/Entra ID