DLB Associates · 5 hours ago
Identity Security Engineer
United States
Full-time
Onsite
Mid, Senior Level
3+ years expDLB Associates is a company that helps organizations navigate the complex landscape of technology solutions. The Identity Security Engineer is responsible for protecting the organization’s identity infrastructure by designing, implementing, and operating secure authentication, authorization, and access controls.
Association
Responsibilities
Design, implement, and maintain secure identity architectures using Microsoft Entra ID
Manage user, group, device, and service-principal identity lifecycle controls
Enforce least-privilege access using role-based access control (RBAC)
Design and operate Conditional Access policies (MFA, device trust, location, risk-based access)
Implement passwordless and phishing-resistant authentication (FIDO2, TAP)
Maintain emergency access and break-glass account controls
Implement and operate Privileged Identity Management (PIM)
Reduce standing administrative privileges across Entra ID and Azure
Conduct periodic access and privilege reviews
Automate joiner/mover/leaver processes using PowerShell and Microsoft Graph
Support access reviews and entitlement management
Integrate identity controls with HR and IT provisioning systems
Design and maintain email authentication controls (SPF, DKIM, DMARC)
Implement and manage Microsoft Defender for Office 365 anti-phishing policies
Lead identity-focused response to phishing events
Monitor identity-related alerts and risky sign-in activity
Serve as first responder for identity compromise events
Support investigations involving credential theft or unauthorized access
Provide audit evidence related to identity security controls
Qualification
Required
Hands-on experience with Microsoft Entra ID (Azure AD)
Strong understanding of Conditional Access, MFA, and PIM
Proficiency with PowerShell and identity automation
Working knowledge of SAML, OAuth, OIDC, and modern authentication flows
Experience supporting security and compliance requirements
Experience supporting multi-tenant or multi-subsidiary environments
Familiarity with Microsoft Intune and Microsoft Defender integrations
Experience implementing passwordless authentication strategies
Experience managing Defender for Office 365 phishing protections
Microsoft security certifications (SC-300, AZ-500) or equivalent
3–6+ years of experience in identity, security engineering, or cloud security
Preferred
Experience working in a remote environment
Benefits
Choice of comprehensive medical plans (including two PPO-style plans and a HDHP w/ HSA option)
Flex spending accounts (FSA)
Dental and vision plans
Comprehensive medical, dental and vision benefits extended to spouse / domestic partner and dependent children up to age 26
401k with company match and self-directed brokerage account option
PTO including additional paid time off during the last week of the year
Company paid life insurance coverage for employees and their eligible dependents
Short and long-term disability, AD&D coverage
Professional development opportunities, tuition reimbursement and professional licensing assistance
Paid parental leave after one year of employment
Company
DLB Associates
DLB Associates is an engineering consulting company - rendering and design for residential and commercial sectors.
201-500 employees
H1B Sponsorship
DLB Associates has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (3)
2021 (1)
Funding
Current Stage
Growth StageTotal Funding
unknown2025-12-16Acquired
Recent News
2025-12-30
2025-12-26
2025-12-18
Company data provided by crunchbase