Identity Consultant

Kocho•London, CA

1d•Hybrid

About The Position

Kocho recognizes that technology alone does not deliver change and offers technology adoption services alongside excellent technical consulting to enable clients to achieve their business goals on their journey to Become Greater. Their head office in London’s West End provides a comfortable working environment with flexible collaboration spaces, with additional offices in Cardiff and Cape Town. Kocho is an equal opportunities employer, making recruitment decisions based on qualifications, skill set, and experiences, considering all suitable candidates regardless of age, sex, gender reassignment, race, religious beliefs, marital status, disability, sexual orientation, or any other protected characteristic. The Identity Consultant is a delivery-focused role responsible for designing, building, and integrating Microsoft Entra-based identity solutions, with a primary focus on Entra Identity Governance (IGA) and modern API-driven provisioning. This role involves working directly with clients to implement lifecycle automation, governance controls, and system integrations that support secure and scalable identity management across hybrid and cloud environments. This hands-on position requires strong technical implementation experience with Microsoft Entra Identity Governance, Logic Apps, and Graph API/SCIM-based provisioning, along with the ability to translate requirements into working, automated solutions. The consultant will collaborate with clients and internal teams to deliver high-impact identity projects that reduce risk and improve operational efficiency.

Requirements

Strong hands-on experience delivering Microsoft Entra Identity Governance: Lifecycle Workflows, Entitlement Management, Access Reviews, PIM.
Experience with automated provisioning to cloud and on-prem systems using Microsoft Entra Provisioning Service (SCIM/Graph API).
Integration with Workday, SAP, or custom HRIS platforms.
Proven ability to implement and manage custom provisioning connectors.
Proficiency with Azure Logic Apps, Power Automate, or equivalent for workflow automation.
Strong scripting knowledge (e.g. PowerShell, Graph API queries).
Deep understanding of modern identity protocols and lifecycle patterns (JML).
Excellent communication and documentation skills in a client-facing environment.

Nice To Haves

Microsoft certifications (SC-300, SC-100, AZ-104).
Experience integrating Entra with legacy directories or ticketing systems (e.g. ServiceNow).
Familiarity with CI/CD pipelines or infrastructure-as-code for Azure (Terraform/Bicep).
Experience with Microsoft Identity Manager (MIM) for legacy transitions.

Responsibilities

Lead the deployment and configuration of Microsoft Entra Identity Governance components: Entra ID Provisioning API, Lifecycle Workflows, Entitlement Management, Access Reviews, Privileged Identity Management (PIM).
Map and model access policies that support business roles and audit requirements.
Design and implement automatic provisioning to external systems using HR-driven provisioning via Workday, SAP, or similar platforms.
Design and implement automatic provisioning to external systems using Microsoft Graph API and custom provisioning for bespoke or on-prem applications.
Design and implement automatic provisioning to external systems using SCIM-based connectors for SaaS applications.
Develop or configure custom identity connectors where native options are unavailable.
Build and maintain identity workflows using Logic Apps, Power Automate, and related tools.
Integrate Entra with other systems such as ServiceNow, SuccessFactors, and on-prem directories.
Deliver hands-on identity implementations from design through to testing and go-live.
Lead client workshops to gather requirements and translate them into practical configurations.
Troubleshoot provisioning and governance issues in complex hybrid environments.
Document configuration, runbooks, and operational procedures for transition to BAU support.
Work collaboratively with fellow consultants, architects, and project managers to deliver end-to-end solutions.
Mentor team members and support internal capability building in Microsoft Entra IGA.
Contribute to reusable configuration templates, automation scripts, and service improvement.