Job description

Azure AD (Entra) Security Specialist - (100% remote, EST hours) Optomi, in partnership with a Fortune 50 company in the pharma/healthcare space is looking to add a Security Engineer to their Active Directory Team! The Security Engineer over Azure Active Directory will support configuring subscriptions, and engineering projects in AD. Key Responsibilities: • Reviewing and securing default admin accounts and integrating them into the PAM (Privileged Access Management) solution • Administer and secure Windows Server environments with a focus on enterprise hygiene and least-privilege access • Segment and manage accounts across domains, including scripting tasks for child domains and access consolidation • Perform service account reviews and reconfiguration to meet security standards • Partner with business units to understand access requirements and ensure proper identity governance Skills & Experience • 5+ years of experience in Active Directory & at least 3+ years working in Azure AD/EntraID. • Strong experience with Active Directory scripting and automation • Familiarity with account segmentation, access reviews, and PAM integrations • Ability to communicate effectively and work cross-functionally with technical and non-technical teams • Comfortable working with large datasets and directory object analysis • Strong understanding of identity best practices, authentication protocols, and server hardening principles Preferred Qualifications • Experience with enterprise IAM or PAM tools (e.g., CyberArk, BeyondTrust, etc.) • Background in large, multi-domain or federated AD environments • Experience working in regulated industries (e.g., healthcare, pharma, financial services)

Requirements