Architect Entra ID (m/f/d)

You design and implement Entra ID as a central IAM platform for the EDEKA association. You set architecture standards for the configuration of Entra ID, especially in combination with a distributed on-premise identity and AD landscape. When you build an Application Onboarding Factory, you can also realize Single Sign-On (SSO) in the retail sector. You configure SSO and MFA procedures in retail. You develop and implement a migration process to replace 400,000 identities and eight on-premise IAM systems by Entra ID. You define IAM process standards in Entra ID, including for User Lifecycle, Conditional Access and the Recertification of Permissions. You will start technical documentation to ensure the operation of Entra ID as an IAM platform after the migration and transformation phase. You automate IAM workflows using PowerShell and Microsoft Graph API.

You have a degree in computer science, information technology or a related area. You bring profound expertise in the architecture and administration of Microsoft Entra ID as an IAM platform and experience in configuration (including Entra ID Governance, Conditional Access, Identity Protection, PowerShell, Azure, MFA and SSO). You have knowledge in Graph-API, REST and SCIM. You and think analytically and structured and quickly acquire knowledge in complex technical environments. You have experience in defining and implementing Conditional Access Policies, ideally also in workflow automation using PowerShell and Graph API. You have expertise in security and compliance requirements (especially KRITIS and NIS2) in the cloud context. You prepare technical information according to target groups and show communication and consulting strength; also brings you experience from global or large organizations. You have fluent German language skills in word and writing (CEFR level C1 or higher).

Work-Life-Balance: Benefit from 30 days of vacation and the opportunity to participate in mobile work (3 days office, 2 days home office). Influence: You shape the IT of the market leader in food retail in Germany. Financial incentive & other offers: Look forward to an attractive salary, asset-effective services, free salary account as well as other benefits & offers. General development (scientific & personal): We expect you to receive various training opportunities such as e.g. digital learning platforms and the possibility to participate in specialist conferences. Operational health management: Our health management takes care of your well-being in the workplace and beyond. Culture & cooperation: We offer you an optimal start in our company and place a lot of emphasis on good onboarding so that you can start right through and shape through our different communities and networks from the start. .