Job Code: SECPAIE/08May2026/128
Job Title: Security & Passwordless Identity Engineer
Experience: 8+ Years
Job Type: Contract
Work Mode: Remote

Key Responsibilities
• Validate server inventory and OS compatibility for MFA/Azure Arc deployment
• Deploy and configure Azure Arc agents to server pilot groups and monitor performance
• Configure Microsoft Authenticator with biometric verification for server access
• Develop SOPs for MFA-enabled server login and privileged access procedures
• Design and implement phishing-resistant authentication across the full user population (FIDO2, Windows Hello for Business, Authenticator)
• Phase out password-based authentication enterprise-wide
• Configure Continuous Access Evaluation (CAE) policies for real-time risk-based session management
• Integrate XDR signals (Microsoft Defender) with Conditional Access for device assurance
• Contribute to the organization’s Zero Trust architecture documentation and governance posture

Required Skills
• 8+ years in identity security with a focus on MFA and privileged access
• Hands-on experience with Azure Arc and server MFA deployment
• Deep familiarity with Microsoft Authenticator, FIDO2 keys, and Windows Hello for Business
• Experience configuring Conditional Access policies including risk-based and device-compliance signals
• Understanding of Continuous Access Evaluation and token revocation mechanics
• Familiarity with Microsoft Defender XDR and Entra ID Protection