Enable job alerts via email!

Microsoft 365 Security Administrator / IAM Specialist

Blue Pearl PTY LTD

Umhlanga Rocks

On-site

ZAR 300 000 - 600 000

Full time

25 days ago

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

An established industry player is looking for a skilled Microsoft 365 Security Administrator to spearhead a vital security enhancement project. This role is pivotal in ensuring secure access to corporate systems through the design and implementation of conditional access policies and identity governance. You will be responsible for managing user access, enforcing security compliance, and optimizing admin roles to adhere to best practices. If you are passionate about security and compliance within a dynamic environment, this is an exciting opportunity to make a significant impact.

Qualifications

  • Proven experience with Microsoft 365 Security & Compliance tools.
  • Strong understanding of Azure Active Directory and identity governance.

Responsibilities

  • Lead security enhancement projects within the CMS network.
  • Design and implement conditional access policies and identity governance.

Skills

Microsoft 365 Security & Compliance tools
Azure Active Directory
Conditional access policies
Identity governance
Microsoft Defender
Microsoft Purview
OneDrive
SharePoint
Zero Trust security models
IP-based access policies

Education

Microsoft Certified: Identity and Access Administrator Associate
Microsoft Certified: Security Administrator Associate
CompTIA Security+ or equivalent

Job description

We are seeking a skilled Microsoft 365 Security Administrator or IAM Specialist to lead a security enhancement project within the CMS network. The role focuses on designing and implementing conditional access policies, identity governance, and security best practices across Microsoft 365, ensuring only authorized and compliant access to corporate systems.

Key Responsibilities:

  1. Identity & Access Management:
    1. Perform a comprehensive cleanup of existing users:
    2. Identify and disable/delete inactive or former users based on a predefined list.
    3. Ensure only current employees have active access.
    4. Design and configure security groups to manage tiered access:
      1. Admins (with tailored conditional access policies)
      2. Standard Users
      3. High-Risk Users (with additional security policies)
      4. Location-specific users
    5. Implement location-specific access control policies:
      1. Full app and web access for users in Ireland and India
      2. Web-only access for other regions (with an exception group)
      3. Block access from China and Russia
      4. Define trusted locations based on IP ranges
  • Conditional Access Configuration:
    1. Enforce conditional access rules for desktop apps to allow usage only from compliant (managed) devices.
    2. Create exception groups for legitimate non-compliant access as needed.
    3. Block offline access to OneDrive and SharePoint to prevent data leakage.
    4. Enforce MFA for all users across the organization.
    5. Ensure all sign-ins meet security compliance policies.
  • Emergency Access & Admin Roles:
    1. Create and configure break-glass accounts for emergency access scenarios.
    2. Review and optimize admin role assignments to follow least-privilege principles.
  • Microsoft Purview (Compliance & DLP):
    1. Ensure Microsoft Purview is configured correctly:
      1. Information protection
      2. Audit and compliance configurations

    • Required Skills and Experience:

    1. Proven experience with Microsoft 365 Security & Compliance tools.
    2. Strong understanding of Azure Active Directory, conditional access policies, and identity governance.
    3. Hands-on experience with:
      1. Microsoft Defender, Purview, OneDrive, and SharePoint.
      2. Creating and managing security groups and roles.
      3. IP-based access policies and location-based controls.
    4. Familiarity with Zero Trust security models and best practices.
    5. Experience working with sensitive data environments or regulated industries is a plus.

    Requirements:

    Certifications (Preferred):

    1. Microsoft Certified: Identity and Access Administrator Associate
    2. Microsoft Certified: Security Administrator Associate
    3. CompTIA Security+ or equivalent security-focused certifications

    Soft Skills:

    1. Strong communication and documentation skills.
    2. Ability to collaborate across security, IT, and compliance teams.
    3. Structured approach to problem solving and policy implementation.
    Get your free, confidential resume review.
    or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
    TrustpilotStars
    Rated “Excellent” based on 15,437 reviews
    Follow us
    JobLeads Youtube ProfileJobLeads Linkedin ProfileJobLeads Instagram ProfileJobLeads Facebook ProfileJobLeads Twitter AccountJobLeads Xing Profile
    Company
    Services
    Free resources
    Support

    © JobLeads 2007 - 2025 | All rights reserved