Access Control, Application Integration, Artificial Intelligence (AI), Artificial Intelligence (AI) Agents, Authentication, Cloud Applications, Cloud Computing, Documentation Standards, Identify Issues, Identity Data Management, Microsoft Access Database, Microsoft Active Directory, Microsoft Product Family, Operations Processes, Systems Administration/Management
Provide senior-level administration and governance of Microsoft Entra identity services, ensuring secure identity lifecycle management, access governance, and application authentication across Microsoft 365 environments. This role plays a critical function in securing access to Copilot and AI services by enforcing identity controls and preventing unauthorized access or identity sprawl.
Preferred location with hybrid work schedule: Kansas City, KS or Dallas, TX
Job Duties and Responsibilities
- Administer access lifecycle for cloud identities within Microsoft Entra, including access provisioning, deprovisioning, and role-based access control after synchronization from on-prem Active Directory
- Manage Microsoft Entra application registrations and enterprise applications, including permissions, consent, and ownership governance
- Oversee certificate and client secret lifecycle management for cloud-based applications and integrations
- Partner with the Identity team to support and maintain the AD sync utility tool, ensuring reliable and accurate synchronization of identities to Microsoft 365
- Monitor and validate identity synchronization outcomes, troubleshooting sync issues and data inconsistencies between on-prem AD and Entra ID
- Design and enforce Conditional Access policies and authentication controls to secure access to Microsoft 365 resources
- Conduct access reviews and enforce least-privilege access across cloud applications and services
- Manage identity governance capabilities including entitlement management, access packages, and automated access assignments
- Evaluate and secure identity configurations supporting Microsoft 365, Copilot, and AI-enabled services
- Review and control application permissions to prevent excessive or inappropriate access to organizational data
- Support secure authentication and authorization scenarios for Copilot, AI agents, and integrated applications
- Identify, assess, and remediate identity-related risks, including excessive permissions, stale accounts, and misconfigurations
- Serve as Tier 3 escalation point for Entra identity and access issues
- Collaborate with security, compliance, IAM, and application teams to align cloud identity governance with enterprise standards
- Develop and maintain documentation, standards, and operational procedures specific to cloud identity and access management
- Perform other duties as assigned
D
Dairy Farmers of America Inc