• Systems Engineer

    Insight Global (Houston, TX)


    Job Description

    Insight Global is assisting a client in identifying a Systems Engineer to lead identity and access management initiatives across a global enterprise. This role is ideal for someone who thrives in hands-on technical environments and can manage multiple projects while supporting daily operations. The engineer will work closely with technical teams, project managers, and security stakeholders to ensure secure and efficient access across cloud and on-prem systems.

    Key Responsibilities

    Azure Entra ID / Identity Management

     Lead the design and implementation of identity solutions using Azure Entra ID

     Manage Conditional Access Policies, Privileged Identity Management (PIM), and role assignments across management groups, subscriptions, and resources

     Administer app registrations, enterprise applications, service principals, and managed identities with a focus on least-privilege access and MS Graph API permissions

     Oversee user and group management, endpoint security, and mobile device policies via Intune

     Maintain and optimize multifactor authentication (MFA), self-service password reset (SSPR), and Windows Hello for Business (WHfB)

     Automate identity-related tasks using PowerShell scripting and scheduled jobs

     Stay current on Entra ID features, security trends, and best practices to drive continuous improvement

    Active Directory

     Manage a global AD environment with multiple domain controllers and sites supporting 5,000+ users

     Administer DNS, GPOs, OU structures, and user object configurations

     Implement Microsoft Tiering, IAM, and PAM models to enforce secure access

     Maintain domain integrity through FSMO role management and disaster recovery planning

     Delegate permissions across OU structures and streamline access controls

     Automate AD tasks using PowerShell for operational efficiency

    Okta

     Serve as a subject matter expert on Okta platform capabilities and IAM concepts including SSO, SAML, OAuth, OIDC, MFA, and RBAC

     Design and configure Okta solutions aligned with enterprise architecture and security requirements

     Support application integrations and troubleshoot identity-related issues across cloud and on-prem environments

     Collaborate with architects and stakeholders to refine IAM strategies and ensure secure access provisioning

     

    We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to [email protected] learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

    Skills and Requirements

     10+ years of experience in infrastructure engineering with a focus on identity and access management

     Proven expertise in Azure Entra ID and Active Directory

     Experience in regulated industries (energy, financial, compliance)

     Deep understanding of:

     

    o Conditional Access Policies

     

    o Privileged Identity Management (PIM)

     

    o Application Registrations and MS Graph API permissions

     

    o Multifactor Authentication (MFA), Self-Service Password Reset (SSPR), Windows Hello for Business (WHfB)

    o Azure user/group management, Intune policies, mobile device management, and endpoint security

     Experience in an enterprise level organization, this specific environment has over 5,000 users

     PowerShell scripting skills for automation and scheduled tasks • Subject matter expertise in Okta:

     

    o Identity federation, SSO, SAML, OAuth, OIDC

     

    o Role-based access control (RBAC) and least privilege principles

     

    o Application integration and platform configuration

    o Troubleshooting and supporting Okta-based IAM solutions

     Experience with backup and recovery tools:

    o Rubrik, Cohesity, Metallic (Commvault)

     Familiarity with Intune Autopilot and policy management

     Ability to stay current on Entra ID features and security trends