Identity Lifecycle Automation Engineer

Identity Lifecycle Automation Engineer

Remote

Night shift

About the Role The Identity Automation & Lifecycle Engineer is responsible for tightly integrating Workday and Microsoft Entra ID to automate and enhance enterprise onboarding and offboarding processes as part of an IAM transformation. This role ensures Workday acts as the authoritative source for identity events while Entra ID enforces timely, accurate identity and access lifecycle changes across the environment.

The primary objective is to reduce manual effort, eliminate access risk, and improve the employee experience through reliable, HR driven identity automation.

Key Responsibilities

• Design and implement Workday driven Joiner, Mover, and Leaver (JML) workflows using Entra ID as the execution layer

• Strengthen the integration between Workday and Entra ID to ensure:

o Accurate user provisioning

o Timely access changes

o Reliable offboarding and access revocation

• Own and develop Azure Automation Runbooks (PowerShell based) to support:

o Automated onboarding and account creation

o Role and group assignment based on Workday attributes

o Automated deprovisioning and offboarding enforcement

• Use Microsoft Graph API and PowerShell to:

o Create and manage users, groups, and access assignments

o Validate lifecycle outcomes and access states

o Generate audit and operational reports

• Partner with HR and Workday teams to:

o Define authoritative attributes and lifecycle triggers

o Align identity logic to HR processes and data quality

• Collaborate with IAM architecture and security teams to ensure automation aligns with target state IAM architecture

• Build robust error handling, logging, and alerting into automation workflows

• Document lifecycle flows, integration patterns, and operational runbooks

• Support testing, rollout, and continuous improvement of lifecycle automation capabilities

Required Skills

• 5+ years experience with identity lifecycle automation (Joiner/Mover/Leaver) and implementing identity lifecycle automation (onboarding/offboarding)

• Strong experience with Workday based identity integrations

• Strong PowerShell scripting skills for IAM automation

• General working knowledge of:

o Microsoft Graph API

o Microsoft Entra ID user, group, and lifecycle management

• Experience developing and maintaining Azure Automation Runbooks

• Ability to translate HR events and attributes into identity and access outcomes

• Technologies: Azure Arc, Azure Automations, Azure functions, Integration w/ HRMS systems

Nice to Have

• Experience delivering IAM modernization or transformation initiatives

• Familiarity with:

o Attribute driven access models

o Role based group assignment strategies

• Understanding of identity governance, access risk, and audit requirements

• Experience integrating lifecycle automation with downstream applications

• Strong cross functional collaboration skills (IAM, HR, Security, IT Operations)