Senior Information Security Engineer - Entra (REMOTE OR MA BASED)
United States
Full Time
2 hours ago
No H1B
Key skills
PowerShellAIMLAnalyticsAzureIAMEntra IDSAMLActive DirectoryIdentity ManagementSSOREST APISDLCCI/CDLeadershipCommunication
About this role
The Hanover Insurance Group has been dedicated to delivering on their promises for over 170 years. They are seeking a Senior Information Security Engineer to lead the design, implementation, and management of identity and access solutions using Microsoft Entra, ensuring secure and user-friendly identity experiences across platforms.
Responsibilities:
- Design and implement scalable identity solutions with Entra ID and B2C
- Integrate cloud and on-prem systems for SSO, MFA, and Just-In-Time provisioning
- Deploy secure authentication flows (OAuth2, OpenID Connect, SAML, Conditional Access)
- Build and maintain custom policies using Identity Experience Framework (IEF)
- Manage TrustFrameworkPolicy XML files, REST API integrations, claims transformations, and multi-step authentication
- Customize user journeys (sign-up, sign-in, password reset, profile editing)
- Troubleshoot and optimize policies using Application Insights and B2C logs
- Manage lifecycle processes (provisioning, de-provisioning, access reviews)
- Administer Privileged Identity Management (PIM), Access Packages, and Conditional Access
- Ensure compliance with frameworks (NIST, ISO 27001)
- Stay current with Microsoft Entra roadmap and IAM technologies
- Partner with application teams and stakeholders to deliver secure identity solutions
- Integrate Entra ID with third-party and on-prem systems
- Provide technical leadership and mentor junior engineers
Requirements:
- 5+ years in identity engineering, SDLC-based solution development, and Active Directory support
- Bachelor's degree in computer science, Information Technology, or related field, or the equivalent combination of education, training and experience
- Deep knowledge of Microsoft Entra ID and B2C, including custom policy development
- Strong understanding of IAM frameworks, governance, and modern authentication protocols
- Experience with hybrid identity, Active Directory, and troubleshooting multi-tenant environments
- Proficiency in PowerShell, Kusto, Azure CLI, automation, and secure API solutions
- Familiarity with audit, log analytics, DevOps, monitoring, and reporting in Azure/Entra
- Background in architecture, IAM roadmaps, and exposure to AI/ML for technology enhancements
- Strong problem-solving, communication, and documentation skills
- Ability to lead, mentor, and collaborate across teams
- Skilled in presentations, training, and customer-focused troubleshooting
- Must be eligible to work in the US without requiring sponsorship now or in the future (i.e Lawful Permanent Residence or US Citizen)
- Microsoft certifications (SC-300, SC-100, AZ-500)
- Knowledge of CI/CD pipelines, DevSecOps, hybrid identity, and ADFS