**Introduction** '- **Your role and responsibilities** The Identity & Access Management Specialist is responsible for managing and maintaining Access Management technologies such as Microsoft EntraID and Priveleged Access Management (PAM) technologies such as BeyondTrust. This role requires a deep understanding of identity and access management principles, with specific expertise in both Azure Active Directory (Entra ID) and PAM solutions. The specialist will ensure robust security protocols are adhered to, while also facilitating seamless user experiences across the organization. Key Responsibilities: * Design, implement, and maintain the organization's identity and access management strategy utilizing Entra ID and BeyondTrust tools. * Manage user identities, access rights, and permissions within the Entra ID environment, ensuring appropriate access controls are in place. * Oversee and manage the BeyondTrust PAM solution, including the secure handling of privileged accounts and sessions. * Implement and enforce strong authentication methods such as Multi-Factor Authentication (MFA) and Conditional Access policies in Entra ID. * Monitor and audit identity and access management activities for anomalies and potential security threats. * Collaborate with IT teams and stakeholders to troubleshoot and resolve access-related issues, ensuring minimal disruption to business operations. * Keep abreast of new features and updates in Entra ID and BeyondTrust, recommending and implementing improvements where beneficial. * Create and maintain comprehensive documentation of all processes, configurations, and procedures related to Entra ID and BeyondTrust. **Required technical and professional expertise** * Minimum of 2 years of experience in identity and access management, with at least 1 year in a similar role utilizing Entra ID and/or BeyondTrust. * Proven expertise in Microsoft Entra ID administration. * Strong knowledge of BeyondTrust Privileged Access Management (PAM) and/or other PAM solutions. * In-depth understanding of identity protocols (SAML, OAuth, etc.), directory services, and Active Directory. * Experience with scripting languages (PowerShell preferred) and automation tools. * Familiarity with ITIL/ServiceNow or similar service management frameworks. * Excellent problem-solving skills, ability to think strategically, and attention to detail. * Strong communication and interpersonal skills, with the ability to explain complex technical concepts to non-technical audiences. * Relevant certifications such as Microsoft Certified: Azure Identity and Access Administrator Associate are highly desirable. **Preferred technical and professional experience** * Certification in Microsoft Azure Security technologies, such as Microsoft Certified: Azure Security Engineer Associate. * Hands-on experience with Azure AD Connect, Azure AD Domain Services, and Azure AD Privileged Identity Management. * Knowledge of industry best practices and trends in identity and access management, such as Zero Trust Architecture. * Cybersecurity Certifications such as Comptia Sec+, CySA+, (ISC)2 SSCP are preferred but not required. IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.