Apply on Employer Site

Sage · 16 hours ago

Senior Identity & Access Management Engineer

Atlanta, GA

Full-time

Hybrid

Senior Level

5+ years exp

Sage is a company dedicated to empowering businesses and people to thrive through innovative technology. They are seeking a Senior Identity & Access Management Engineer to deliver and support high-quality identity solutions, collaborating with peers and stakeholders to ensure security and performance while mentoring junior team members.

Business Information SystemsEnterprise SoftwareHuman ResourcesInformation TechnologySoftware

H1B Sponsor Likely

Responsibilities

Delivery and maintenance of robust technical solutions, including the configuration and management of both on-premises and cloud-based systems such as Entra ID, Active Directory, and supporting services like Multi-Factor Authentication, Conditional Access, Public Key Infrastructure, and DNS

Use of scripting and automation tools, particularly PowerShell, to streamline identity and access management operations and develop efficient, repeatable workflows

Contributing to all phases of project delivery, including technical design, implementation, configuration, and documentation, while collaborating with technical leads and stakeholders throughout the lifecycle

Appling security best practices to identity and access management, including security hardening, privileged access controls, and audit measures, helping to ensure systems are secure and compliant

Collaborating effectively with cross-functional teams, aligning identity solutions with business and security requirements. Communicate clearly with both technical and non-technical stakeholders to ensure shared understanding and alignment

Commitment to staying updated on industry trends, emerging technologies and advancements in cloud identity and access management. Proactive in seeking out professional development opportunities

Being curious with a growth mindset and a proven ability to troubleshoot and resolve complex issues with experience in root cause analysis and the development of preventive measures to enhance system reliability

Supporting adoption of new technologies and tools, assisting with evaluations and sharing insights with the wider team to drive innovation and continuous improvement

Qualification

Active DirectoryEntra IDPowerShellPrivileged Identity ManagementRole-based Access ControlPublic Key InfrastructureAzure Security CentreCloud identity solutionsZero Trust principlesMicrosoft Graph APIEntra ID Graph APIDigital certificate management

Required

Extensive experience with Active Directory and Entra ID, specifically areas like Conditional Access / Identity Protection / MFA / Domain Controllers / DNS / DHCP

Knowledge of Securing Identity Platforms such as Privileged Identity Management (PIM) and Role-based Access Control (RBAC)

Familiarity with security tools and practices such as, Entra ID Governance, Defender for Identity, Microsoft Sentinel, Group Policy hardening, and Secure LDAP

Knowledge of Azure Security Centre features related to identity security

Proficiency in implementing and managing Entra ID B2B for external user collaboration

Experience with Entra Connect for integrating on-premises Active Directory with Entra ID

Proficiency in scripting languages such as PowerShell for automating Entra ID tasks and configurations

Experience with Infrastructure as Code (IaC) tools for managing Azure resources

Knowledge of Entra ID Graph API and Microsoft Graph API for programmatically managing Entra ID resources

Understanding of DNS principles, design, and configuration

Integration of DNS services with Active Directory and Entra ID for name resolution and identity verification

Experience implementing and managing Public Key Infrastructure (PKI) solutions

Knowledge of digital certificate management, including issuance, renewal, and revocation processes

Preferred

5–10 years of enterprise-level experience with Active Directory and Microsoft Entra ID

Expertise in Conditional Access, Identity Protection, MFA, Domain Controllers and DNS

Experience with Privileged Identity Management (PIM) and Role-Based Access Control (RBAC)

Knowledge of cloud identity solutions and SaaS integrations

Proficiency in PowerShell scripting for automation

Familiarity with Zero Trust principles and identity governance

Relevant certifications such as Microsoft Identity and Access Administrator are a plus

Benefits

Comprehensive health, dental, and vision coverage

401(k) retirement match (100% matching up to 4%)

32 days paid time off (21 personal days, 10 national holidays, 1 floating holiday)

18 weeks paid parental leave for birth, adoption, or surrogacy (offered 1 year after start date)

5 days paid yearly to volunteer (through Sage Foundation)

$5,250 tuition reimbursement per calendar year (starting 6 months after hire date)

Sage Wellness Rewards Program ($600 wellness credit and $360 fitness reimbursement annually)

Company

Sage

Glassdoor4.0

At Sage, we knock down barriers with information, insights, and tools to help your business flow.

Founded in 1981

Newcastle Upon Tyne, Newcastle upon Tyne, GBR

10001+ employees

http://www.sage.com

H1B Sponsorship

Sage has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (8)

2024 (9)

2023 (3)

2022 (13)

2021 (6)

2020 (5)