Job Description
Experience 10+ years
Location Mumbai, Bangalore & Chennai
Primary skills On Premise AD, Azure AD, Azure AD Connect, PKI & ADFS
Interested candidate share their updated resume to [Confidential Information]
Job Summary
We are looking for a highly skilled IAM & PKI Engineer with strong expertise in Active Directory Certificate Services (AD PKI), Azure Entra ID (Azure AD), ADFS, and NDES/SCEP. The role involves designing, implementing, securing, and maintaining identity and certificate‑based authentication solutions across hybrid (on‑prem + cloud) environments.
Strong hands‑on experience with
AD PKI / AD CSAzure Entra ID (Azure AD)ADFSNDES / SCEP
Key Responsibilities
Active Directory & PKI (AD CS) Design, deploy, and manage Enterprise PKI infrastructure Root CA, Issuing CA, Offline CA models Troubleshoot PKI issues related Perform CA hardening, backup, and disaster recovery testing
NDES / SCEP
Deploy and manage NDES for device certificate enrollment Integrate NDES with Intune Third‑party MDMs Network devices (Wi‑Fi, VPN, firewalls) Configure registration authority policies and security Troubleshoot SCEP enrollment failures and renewal issues
Azure Entra ID (Azure AD)
Manage hybrid identity environments (On‑prem AD + Entra ID) Configure Azure AD Connect / Cloud Sync Seamless SSO Password Hash Sync / Pass‑Through Authentication Implement identity security features Conditional Access MFA Identity Protection Support certificate‑based authentication with Entra ID Monitor sign‑ins and security logs
ADFS (Active Directory Federation Services)
Design and manage ADFS infrastructure Configure
Claims‑based authentication Relying party trusts OAuth / SAML integrations
Manage ADFS certificates
Service Communication Token‑Signing & Token‑Decrypting
Troubleshoot authentication and federation issues Plan and perform ADFS upgrades and migrations (including ADFS to Entra ID modernization)
SC‑300 (Identity & Access Administrator) AZ‑104 / AZ‑305 Windows Server / Security certifications
