Allstate · 1 day ago
Security Architect - Microsoft Entra ID
United States
Full-time
Remote
Senior Level
$96K/yr - $171K/yr
7+ years expAllstate is a company dedicated to protecting families and their belongings from life’s uncertainties. They are seeking a highly skilled Security Architect with expertise in Microsoft Entra ID to design, implement, and govern secure Azure Application Registrations and integrations while addressing complex security challenges within the Line 1 Risk team.
BankingFinanceFinancial ServicesInsuranceInsurTechVenture Capital
No H1B
Responsibilities
Architect and secure Azure Application Registrations within Allstate’s Microsoft Entra ID tenant
Govern permission and consent management, enforcing least privilege through robust delegated and application permission models
Manage user and admin consent settings and develop automated workflows for reviewing and approving sensitive permission requests
Implement application access reviews to validate permissions and ensure least privilege access
Securely manage application secrets and certificates, integrating with Azure Key Vault
Design and enforce Conditional Access policies based on user, location, device, and risk signals
Integrate security checks into CI/CD pipelines for application registration configurations
Collaborate with development, DevOps, and infrastructure teams to embed security into application lifecycle
Conduct threat modeling and risk assessments for authentication and authorization flows
Monitor application and service principal activity using Microsoft Sentinel, Azure Monitor, and Entra ID audit logs
Lead structured problem-solving efforts for complex, high-impact security and identity-related challenges
Develop and propose actionable, scalable solutions aligned with enterprise risk appetite and security strategy
Drive end-to-end execution of solutions—ensuring delivery, stakeholder alignment, and measurable outcomes
Influence teams and leadership to adopt new approaches and remediate systemic issues
Collaborate with engineering, operations, and governance teams to ensure solutions are embedded and sustained
Track and report progress on key initiatives, highlighting risk reduction and business impact
Stay current on emerging threats, technologies, and regulatory requirements to inform strategic decisions
Qualification
Required
Proven experience securing application registrations, service principals, and enterprise applications in single/multi-tenant environments
Deep expertise in Microsoft Entra ID, including Conditional Access, Identity Governance, and Privileged Identity Management (PIM)
Strong understanding of modern authentication protocols: SAML, OAuth 2.0, OpenID Connect
Experience with SCIM and JIT provisioning for automating user lifecycle across applications
Proficiency in Azure RBAC for managing access to Azure resources
Experience with Microsoft Graph API permissions, especially for SharePoint Online, MS Teams Apps, and cross-tenant collaboration
Familiarity with Microsoft Fabric workspace roles and Power BI API permissions
Analytical Thinking
Data Visualization
Identity Governance
Identity Management (IdM)
Information Technology (IT) Risk Management
Information Technology Management
Microsoft Azure
Risk Mitigation Strategies
Risk Reporting
Role Based Access Control (RBAC)
SAML
SCIM
Preferred
7 or more years of related experience
3+ years in cloud security or IAM roles, with a focus on Azure and Microsoft Entra ID
Experience integrating Microsoft Dynamics 365 with Entra ID
Knowledge of Infrastructure as Code (IaC) using Terraform or ARM templates
Company
Allstate
Allstate is an insurance company that offers car, home, and life insurance services. It is a sub-organization of Allstate.
10001+ employees
Funding
Current Stage
Public CompanyTotal Funding
$500M2024-06-24Post Ipo Debt· $500M
2014-01-13Post Ipo Equity
1993-06-11IPO
Leadership Team
Jonathan Adkisson
SVP & General Manager - Direct Distribution
Guy Hill
Executive Vice President, Product
Recent News
2026-01-09
2025-12-20
2025-11-27
Company data provided by crunchbase