Implementing business cloud strategy. Freelancer
scope: design and implement secure identity and
access solutions for a new Azure tenant in a
regulated environment
Technology
Active Directory) in enterprise or regulated
environments. - Strong background in implementing
RBAC, conditional access, PIM, secure admin
practices, and external access governance. -
Demonstrated expertise in access packages,
entitlement management, and lifecycle workflows. -
Practical experience with Azure AD B2B setup and
governance in multi-organization or partner
environments. - Solid understanding of PCI-DSS and
ISO 27001 compliance frameworks and their
application in identity and access management. -
Strong documentation skills with ability to produce
compliance-ready deliverables.
Technology
Cloud Adoption Framework"
Further needed skills
Preferred Skills - Microsoft certifications such as
SC-300 (Identity and Access Administrator), AZ-500
(Security Engineer Associate), or SC-100
(Cybersecurity Architect). - Experience in regulated
industries such as finance, healthcare, or
manufacturing. - Familiarity with Zero Trust
principles and their application in Entra ID. -
Excellent communication and collaboration skills.
Task Description
Role Overview We are seeking a highly skilled Entra
ID Specialist to design and implement secure
identity and access solutions for a new Azure tenant
in a regulated environment. The role is dedicated to
Microsoft Entra ID and will ensure that
authentication, authorization, and external
collaboration are built in line with PCI-DSS and ISO
27001 standards. The successful candidate will
establish a secure, compliant, and scalable identity
platform that underpins all Azure services and
business requirements.
Key Responsibilities -
Design and implement Entra ID (Azure AD) identity
and access management architecture aligned with
regulatory and corporate security standards. -
Establish and secure administrative accounts and
privileged access workstations, ensuring leastprivilege
and just-in-time access principles are
enforced. - Configure and manage role-based
access control (RBAC) policies, including
conditional access and privileged identity
management (PIM). - Develop and deploy access
packages, entitlement management, and lifecycle
workflows to standardize and automate
onboarding/offboarding. - Implement and govern
Azure AD B2B (Business-to-Business) collaboration,
including external user policies, federation, and
guest account lifecycle management. - Ensure that
external collaboration through B2B and access
packages complies with PCI-DSS and ISO 27001
requirements. - Collaborate with the Azure platform
team to ensure that identity governance and access
controls are fully integrated into landing zones,
applications, and services.
