Senior Cloud Identity Administrator

Select how often (in days) to receive an alert:

Position Summary: We are seeking a skilled Senior Cloud Identity Administrator to join our Digital Identity team. The ideal candidate will be responsible for ongoing activities related to identity and authorization of our various cloud services and applications. This role requires familiarity with concepts related to identity, such as multifactor authentication and single sign-on.

Key Responsibilities:

• Cloud Identity & Access Management: Lead and manage the design, implementation, andongoing optimization of cloud-based identity solutions, including Azure Active Directory, AWS IAM, and other cloud IAM services.
• Identity Federation & Single Sign-On: Configure and manage identity federation (SAML, OAuth, OpenID) and Single Sign-On (SSO) integrations across multiple cloud applications and third-party systems. Administer Privileged Identity Management (PIM) in Entra.
• Access Control & Security: Establish and enforce security policies for user access, roles, and permissions, including multi-factor authentication (MFA) and conditional access rules.
• Identity Governance: Implement and maintain identity governance and lifecycle management practices, ensuring compliance with industry standards and regulatory requirements.
• Collaboration & Cross-Functional Support: Collaborate with internal teams (security, DevOps, application owners) to ensure proper identity and access management practices across cloud-based environments, ensuring compliance and reducing security risks.
• Monitoring & Troubleshooting: Proactively monitor, troubleshoot, and resolve identity-related incidents and service disruptions, ensuring minimal impact to users and business operations.
• Documentation & Knowledge Sharing: Develop and maintain technical documentation, including standard operating procedures (SOPs) and best practices for identity management. Mentor junior team members and provide expertise on complex identity challenges.
• Build and maintain Infrastructure as Code (IaC) modules and applications, preferably using Terraform, to automate tasks and simplify effort.
• Manage DNS domain registrations, zones, and redirects.
• Manage certificate lifecycles.

Required Skills and Experience:

• Minimum of 5 years’ experience with Microsoft Azure/Entra ID and services.
• Expertise in identity federation protocols (SAML, OAuth, OpenID Connect) and Single Sign-On (SSO) configurations.
• Experience with Microsoft Active Directory.
• Experience with Privileged Identity Management, MFA, and Conditional Access Policies.
• Working knowledge of all aspects of DNS.
• Knowledge of scripting and automation tools (PowerShell, Azure CLI, AWS CLI, Python, etc.) to automate tasks and streamline processes.
• Proficiency in Infrastructure as Code (IaC) tools, preferably Terraform.
• Ability to troubleshoot complex identity-related issues in cloud environments and implement effective solutions.
• Ability to work independently and as part of a team.
• Strong communication skills and the ability to collaborate effectively with stakeholders.
• This position does not require travel.
• Requires sitting or standing at will while performing work on a computer (or any other physical requirements ).

Preferred Qualifications:

• Certifications in Azure or other related areas.
• Familiarity with DevOps practices and CI/CD pipeline integration related to identity management.
• Knowledge of ServiceNow for change management and incident management.
• An exciting career as an integral part of a world-leading software company providing solutions for architecture, engineering, and construction.
• Competitive Salary and benefits.
• The opportunity to work within a global and diverse international team.
• A supportive and collaborative environment.
• Colleague Recognition Awards.

#LI-RB1

#LI-Hybrid

About Bentley Systems

Bentley Systems (Nasdaq: BSY) is theinfrastructure engineering softwarecompany. We provide innovative software to advance the world’s infrastructure – sustaining both the global economy and environment. Our industry-leading software solutions are used by professionals, and organizations of every size, for the design, construction, and operations of roads and bridges, rail and transit, water and wastewater, public works and utilities, buildings and campuses, mining, and industrial facilities. Our offerings, powered by theiTwinPlatform for infrastructure digital twins, includeMicroStationandBentley Openapplications for modeling and simulation,Seequent’ssoftware for geoprofessionals, andBentley Infrastructure CloudencompassingProjectWisefor project delivery,SYNCHROfor construction management, andAssetWisefor asset operations. Bentley Systems’ 5,200 colleagues generate annual revenues of more than $1 billion in 194 countries.
www.bentley.com

Equal Opportunity Employer:

Bentley is an equal opportunity employer and considers all qualified applicants for employment without regard to race, color, sex, sexual orientation, gender identity, disability, pregnancy, protected veteran status, religion, national origin, age, genetic information or any other protected characteristic. This commitment extends to all aspects of employment, including, but not limited to, hiring, placement, promotion, compensation, and training.Know Your Rights as an applicant under the law.

As an Equal Opportunity Employer, Bentley is committed to providing reasonable accommodations to applicants with disabilities. We encourage you to request a reasonable accommodation if you are not able to fully use or access our online application system. You can make an accommodation request by calling 610-458-5000 or sending us an email at disabilityrequest@bentley.com

2025 Copyright Bentley Systems, Incorporated