Paramount Computer System
Experience – 4 to 6 years Overall, 1- 3 years relevant.
Role Overview
We are seeking an experienced Consumer Identity & Access Management (CIAM) Consultant with strong expertise in Microsoft Entra ID Governance including External ID / Entra ID / Azure AD B2C, B2B to design, implement, and optimize customer identity solutions. The role focuses on delivering secure, scalable, and seamless digital identity experiences across customer-facing applications while ensuring compliance, privacy, and Zero Trust security principles.

Key Responsibilities
1. CIAM / IAM Consulting Knowledge
    • Engage with business and technology stakeholders to define CIAM strategy, roadmap, and architecture
    • Conduct discovery and assessments of existing identity platforms and customer journeys
    • Provide advisory on Zero Trust identity models, data privacy, and regulatory compliance
2. Solution Design & Architecture
    • Design end-to-end CIAM solutions using Microsoft Entra External ID and Entra ID
    • Develop High-Level Design (HLD) and Low-Level Design (LLD) for identity solutions
    • Architect secure customer onboarding, authentication, and profile management journeys
    • Define identity lifecycle workflows, access policies, and governance controls
3. Implementation & Integration
    • Implement Microsoft Entra CIAM solutions including:
    • Customer identity tenant design and deployment
    • Authentication flows (SSO, MFA, passwordless)
    • Identity federation and social identity integration
    • Integrate CIAM with enterprise platforms:
    • CRM systems (e.g., Salesforce)
    • Web and mobile applications
    • APIs using OAuth2 / OpenID Connect
    • Support migration from legacy identity systems to modern Entra-based architecture
4. Identity Security & Governance
    • Implement Conditional Access, Identity Protection, and risk-based authentication
    • Configure access governance, role management, and lifecycle provisioning
    • Ensure secure API access and token-based authorization mechanisms
    • Design controls to prevent fraud, account takeover, and credential attacks
5. Customer Experience Optimization
    • Design seamless self-service user journeys:
    • Registration, login, password reset, and profile management
    • Enable multi-channel identity experience across web, mobile, and partner ecosystems
    • Balance security with frictionless user experience
    • Integrate Verifiable credentials using Microsoft Entra Verified ID
6. Delivery & Collaboration
    • Lead or support end-to-end implementation projects
    • Work closely with:
    • Application teams
    • Security architecture teams
    • Cloud and DevOps teams
    • Provide technical leadership, documentation, and knowledge transfer

Required Skills & Experience
Core IAM / CIAM Expertise
    • Strong experience in Customer Identity & Access Management (CIAM)
    • Deep knowledge of:
    • Authentication & Authorization (OAuth2, OIDC, SAML)
    • Identity Federation and B2C/B2B identity models
    • Experience with identity lifecycle management and governance
Microsoft Entra Expertise
    • Hands-on experience with:
    • Microsoft Entra ID and Entra External ID
    • Conditional Access, MFA, SSO
    • Identity Governance, PIM, Identity Protection
    • Understanding of customer identity tenant architecture and integration patterns
Integration & Development
    • Experience integrating identity with:
    • APIs, microservices, web/mobile applications
    • Knowledge of:
    • REST APIs
    • Token-based security models
    • Identity SDKs (e.g., MSAL)
Security & Compliance
    • Knowledge of below are added advantage:
    • Zero Trust Architecture
    • Data privacy regulations (GDPR, etc.)
    • Experience implementing secure access controls and risk-based authentication

Preferred Qualifications
    • BE / B Tech / B Sc Equivalent – Preferably Computer Science
    • Microsoft certifications (e.g., Microsoft Identity and Access Administrator)
    • Experience with CIAM deployments (millions of users) in productions
    • Prior experience with multi-cloud or hybrid IAM environments
    • Exposure to DevSecOps and automation pipelines

Other Key Competencies
    • Strong consulting and stakeholder management skills
    • Ability to translate business requirements into technical solutions
    • Problem-solving mindset with a focus on security and user experience
    • Excellent communication, Interpersonal and documentation skills

View all job openings