Lead Entra ID / Azure AD Engineer

BAE SystemsVA
83d$115,779 - $196,825
Match Resume

About The Position

BAE Systems, Inc. is seeking a Lead Entra ID Engineer to join our Identity Services organization, supporting the Directory Services, Certificate Management, and Privileged Access Management (DCP) team. This strategic role focuses on defining and implementing enterprise-wide standards and best practices for Microsoft Entra ID (formerly Azure AD) while collaborating across various departments and IT functions. As a Lead Entra ID Engineer, you will be responsible for the governance, engineering, and maintenance of our Entra ID environment. You’ll lead initiatives around identity modernization, enforce security and compliance standards, and work closely with stakeholders to implement access controls and authentication mechanisms. This is a high-impact, cross-functional role for someone with deep technical expertise and strong communication skills.

Requirements

  • Bachelor's degree in CS, IT or an Engineering discipline.
  • 3+ years of hands-on experience managing and engineering Microsoft Entra ID (Azure AD).
  • Strong experience with PowerShell scripting and Microsoft Graph API for automation and administrative tasks.
  • 3+ years of experience with Active Directory in enterprise, multi-domain environments.
  • Solid understanding of Windows Hello for Business, including deployment and policy configuration.
  • Knowledge of compliance frameworks such as CMMC, DFARS, and NIST.
  • Experience with ServiceNow for incident/request handling or workflow integration.
  • Strong written and verbal communication skills; capable of working with cross-functional teams.

Nice To Haves

  • Master's degree in CS, IT or an Engineering discipline.
  • Microsoft Certification in Azure/Entra ID.
  • Experience with Splunk for identity log monitoring and alert/report creation.
  • Experience with Visio for technical documentation, including architecture diagrams and workflows.
  • Familiarity with other Identity Services tools (SailPoint, OpenText, Okta, Ping, Secret Server, CyberArk, BeyondTrust, etc.)

Responsibilities

  • Lead the design, implementation, and continuous improvement of Entra ID (Azure AD) configurations, including user, group, and role management, conditional access policies, enterprise applications, and authentication methods.
  • Partner with internal teams to enforce governance and security standards across Identity Services.
  • Work with compliance teams to ensure identity systems meet regulatory and audit requirements (e.g., NIST, DFARS, CMMC).
  • Automate identity-related tasks using PowerShell and Graph API.
  • Document processes, standards, and architecture diagrams (e.g., using Visio).
  • Provide input and leadership in strategic planning related to directory services.
  • Support integrations with related services such as OpenText IDVault, PAM tools, etc.
  • Mentor junior engineers and collaborate across Identity Services teams and external business units.

Benefits

  • Health, dental, and vision insurance.
  • Health savings accounts.
  • 401(k) savings plan.
  • Disability coverage.
  • Life and accident insurance.
  • Employee assistance program.
  • Legal plan.
  • Discounts on home, auto, and pet insurance.
  • Paid time off.
  • Paid holidays.
  • Paid parental leave.
  • Military leave.
  • Bereavement leave.
  • Federal and state sick leave.
  • Company recognition program for monetary or non-monetary awards.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Education Level

Bachelor's degree

Number of Employees

5,001-10,000 employees

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service