SCOPE OF WORK / DUTIES / ROLES

• Design, implement, and manage identity and access management (IAM) solutions using Microsoft Entra ID (Azure AD) and Amazon AWS.
• Ensure seamless integration of IAM solutions with internal and external applications and systems.
• Develop and deploy PowerShell scripts and Azure Automation workflows to automate user account and group management tasks.
• Implement self-service capabilities for account and group management to enhance efficiency.
• Oversee the entire account lifecycle management process, from user onboarding to offboarding.
• Provision new accounts and assign appropriate access rights based on role requirements.
• Regularly review and update user roles and permissions to reflect changes in job functions and organizational structure.
• Promptly deprovision accounts when users leave the organization or change roles, ensuring the removal of access rights.
• Implement role-based access control (RBAC) to manage permissions based on job roles.
• Conduct periodic access reviews and certifications to ensure compliance with organizational policies.
• Implement and manage Azure AD Privileged Identity Management (PIM) to control, monitor, and audit privileged access to resources.
• Configure PIM to enforce just-in-time (JIT) access, approval workflows, and access reviews for privileged roles.
• Apply security best practices and ensure compliance with relevant standards and regulations.
• Conduct regular audits and reviews of access controls and permissions.
• Provide support for IAM-related issues, including troubleshooting user access problems and resolving authentication challenges.
• Act as an escalation point for complex IAM issues.
• Maintain comprehensive documentation of IAM processes, configurations, and workflows.
• Provide training and support to IT staff and end-users on IAM best practices and tools.
• Monitor the performance and effectiveness of IAM systems and processes.
• Identify opportunities for improvement and implement optimizations to enhance security and efficiency.
• Collaborate with IT security, compliance, and other relevant teams to ensure cohesive IAM strategies.
• Communicate effectively with stakeholders to understand IAM requirements and address concerns.
• Manage external collaboration and sharing settings in Azure AD to enable secure access for partners and external users.
• Implement and manage B2B (Business-to-Business) collaboration settings and policies through Entra ID.
• Integrate and manage IAM processes for B2B scenarios, ensuring seamless and secure interactions with external partners.
• Integrate and manage IAM processes with Amazon AWS, ensuring secure access and interoperability between Azure AD and AWS environments.
• Implement and manage federated identities and single sign-on (SSO) between Azure AD and AWS environments.
• Monitor and optimize IAM configurations to ensure compliance and security across multi-cloud environments.
• Develop and implement automation scripts using PowerShell to streamline routine support tasks such as software installations, updates, and system checks.
• Utilize Power Automate to create workflows that automate repetitive tasks and improve service efficiency.
• Identify opportunities for efficiency through automation and proactively implement solutions.
• Communicate effectively with users to understand their issues and provide clear instructions.
• Collaborate with IT teams to resolve issues and improve service delivery.
• The contractor will be part of a team providing Technical Level 2 and 3 support, ensuring the secure, available, managed, and compliant delivery of Public Cloud Services to NATO and its Strategic Commands.
• The contractor will work remotely, providing services during the core working hours of the Cloud Operations team (Brussels, Belgium).
•