iam architect (active directory and entraid).

Are you an experienced IAM Architect ready to lead the transformation of identity and access management systems for a global organization? Randstad Digital is seeking a seasoned professional with deep expertise in Active Directory (AD), EntraID, and Azure AD (B2B/B2C) to drive the strategic redesign and automation of our IAM infrastructure. Join us remotely and help shape a resilient, secure, and efficient future for our AD and Azure AD environments.

Role Overview:

As the IAM Architect, you will play a pivotal role in optimizing our Active Directory and Azure AD infrastructure to align with evolving business needs and stringent security standards. You'll lead the re-architecture and automation efforts, ensuring the environment is robust, scalable, and ready to meet current and future challenges.

Key Responsibilities:

- Assessment & Gap Analysis: Conduct comprehensive evaluations of the current AD and EntraID/Azure AD setup, identifying gaps in scalability, security, and operational efficiency. Address legacy security issues and deliver a strategic plan for IAM improvements.

- Architecture Redesign: Design a future-ready, scalable architecture that supports both internal and external identity management needs, integrating AD with Azure AD’s B2B and B2C features. Ensure compliance with industry standards and regulatory requirements.

- Security & Risk Mitigation: Enhance security protocols, implement Multi-Factor Authentication (MFA) and Privileged Access Management (PAM), and reduce ransomware vulnerabilities through advanced disaster recovery solutions.

- Automation & Operational Efficiency: Streamline IAM processes through automation, including user provisioning and group management. Deploy monitoring tools for real-time AD and EntraID system health and security tracking.

- Scalability & Future-Proofing: Develop an IAM structure that supports long-term organizational growth, allowing for seamless integration of new technologies and adaptability to changing business needs.

- Business Continuity & Compliance: Ensure the redesigned AD environment is resilient, supports business continuity, and meets regulatory compliance standards (GxP, GDPR), with audit-friendly structures and traceable access control.

- Data Quality & Cleanup: Work with the IAM Engineer and Microsoft Services Team to clean up legacy data within AD, standardizing processes and enhancing overall directory hygiene.

Qualifications:

- 8+ years of hands-on experience with large-scale Active Directory architecture.

- Expert knowledge in AD security, automation, and tools such as AD Manager Plus.

- Proven track record in resolving legacy IAM infrastructure challenges, particularly around security and scalability.

- Strong knowledge of GxP compliance and audit readiness standards for AD environments.

- Leadership experience in managing end-to-end AD transformation projects.

- Microsoft certifications (e.g., Microsoft Certified: Identity and Access Administrator) are preferred.

Preferred Skills:

- Advanced knowledge in disaster recovery, including cross-site replication and failover.

- Strong analytical skills and decision-making capabilities.

- Experience in GxP-regulated environments is highly desirable.

Why Randstad Digital?

Be part of a forward-thinking team committed to leveraging cutting-edge technologies in identity management. At Randstad Digital, you’ll work remotely within a collaborative environment focused on security, efficiency, and scalability, delivering impactful solutions that support global operations.