Entra ID Architect - 12 Month Contract - Inside IR35 - Hybrid in London

Entra ID Architect - 12 Month Contract - Inside IR35 - Hybrid in London

Contract Type: Initial 12 month contract (Inside IR35)
Rate: £600 per day Inside IR35
Location: Hybrid in London

Role Overview:

We are looking for a Microsoft Entra ID Architect to join on a 12-month hybrid contract based in London (2-3 days on-site), with an on-call requirement. The role is responsible for defining the target-state architecture for enterprise identity using Microsoft Entra ID, with a strong focus on Identity Governance, Secure Access, and API-driven provisioning - setting standards and reference architectures used by onsite and offshore delivery teams.

Key Responsibilities:

• Own Microsoft Entra ID tenant-level architecture spanning Conditional Access, Authentication Methods (MFA, Passwordless, FIDO2), Identity Protection, and Privileged Identity Management (PIM), underpinned by a Zero Trust identity model
• Architect enterprise use of Microsoft Entra Identity Governance including Lifecycle Workflows, Entitlement Management, Access Reviews, and PIM role models aligned to audit and compliance requirements
• Design API-first provisioning patterns using Entra ID Provisioning Service, Microsoft Graph API, and SCIM-based provisioning, with workflow orchestration via Logic Apps and Power Automate
• Architect B2B Collaboration, Cross-Tenant Access Settings, and Cross-Tenant Synchronisation patterns, defining security boundaries for guest and external identities
• Establish Identity-as-Code standards using Microsoft Graph, PowerShell, and CI/CD pipelines (Azure DevOps/GitHub Actions), including versioning, promotion, rollback, and auditability for Entra ID configuration

What You Will Ideally Bring:

• 10+ years in Identity & Access Management architecture with deep expertise in Microsoft Entra ID and Entra Identity Governance
• Strong design experience with Conditional Access, Identity Protection, and Privileged Identity Management (PIM) within a Zero Trust framework
• Proven architecture experience with Graph API, SCIM, and Lifecycle Workflows for API-first and custom provisioning patterns
• Experience integrating Entra ID with HR systems (Workday/SAP), SaaS platforms, and on-premises directories including hybrid identity via Entra ID Connect or Cloud Sync
• Strong stakeholder and design authority skills, with the ability to define standards and reference architectures consumed by distributed delivery teams