Security Specialist - IAM​/Entra

Position: Security Specialist - IAM / Entra ID
Position Overview

At PNC, our people are our greatest differentiator and competitive advantage in the markets we serve. We are all united in delivering the best experience for our customers. We work together each day to foster an inclusive workplace culture where all of our employees feel respected, valued and have an opportunity to contribute to the company's success. As a Security Specialist within PNC's Technology organization, you will be based in Pittsburgh, PA;
Cleveland, OH;
Birmingham, AL;
Dallas, TX;
Phoenix, AZ; or Denver, CO

Overview

We are seeking a highly skilled Microsoft Entra  (Azure AD) Engineer with deep expertise in identity, access management, and security policy implementation. This role is critical to business operations, requiring strong collaboration across teams and excellent communication skills to drive secure, scalable identity solutions.

Key Responsibilities

Collaboration & Communication

* Act as a key partner across security, infrastructure, and application teams

* Clearly communicate identity and access strategies, risks, and solutions

* Contribute to a culture where communication is critical to business success

Identity & Access Management (IAM)

* Design, implement, and manage solutions using Microsoft Entra

* Configure and maintain identity security controls aligned with best practices

* Support enterprise identity governance and compliance initiatives

Conditional Access & Security Policies

* Build and manage Conditional Access policies with strong focus on:

○ Risk-based access policies

○ Adaptive authentication controls

○ Session controls (including sign-in frequency and persistent sessions)

Authentication & MFA

* Implement and manage Multi-Factor Authentication (MFA) strategies

* Enforce MFA across applications and users

* Troubleshoot authentication and MFA-related issues

* Drive adoption of passwordless authentication, including:

○ FIDO2 security keys

○ Temporary Access Pass (TAP)

○ Authentication strengths

Privileged Identity Management (PIM)

* Configure and manage Azure AD / Entra

* Define and maintain:

○ Eligible vs. active role assignments

○ Approval workflows

○ Just-in-time (JIT) access models

* Conduct and manage role and access reviews

Roles & Access Governance

* Maintain clear understanding and governance across:

○ Entra

○ Azure RBAC roles

○ Application (App Role) permissions

* Ensure least privilege access principles are enforced

Delegation & Administrative Scope

* Implement Administrative Units (AUs) for scoped delegation

* Enable secure, distributed administration models across the organization

Preferred Qualifications

* Experience in enterprise-scale identity environments

* Knowledge of Zero Trust security principles

* Familiarity with compliance frameworks (e.g., NIST, ISO, SOC)

* Microsoft certifications (e.g., SC-300, AZ-500)

PNC is an in-office company that fosters a supportive culture where employees can thrive and achieve balance. We encourage candidates to connect with their recruiter and hiring manager to understand workplace expectations and ensure the role aligns with their goals.

PNC will not provide sponsorship for employment visas or participate in STEM OPT for this position.

Job Description

* Provides technical evaluation and analysis in a specific Security area. Supports activities, process, and tools needed to improve overall security posture of the organization. Primary responsibilities do not include Architect or Engineering responsibilities.

* Applies security concepts, reviews information, executes defined tasks, analyzes requirements, reviews logs, and creates documentation. Performs investigation and data loss prevention, data manipulation, and coordination of activities. Performs actions to address or mitigate risks and vulnerabilities. Reviews and defines controls.

* Advises on more complex security procedures and products for clients, security administrators and network operations. Participates in enforcement of control security risks and threats; potential of one more controls subject to manager discretion. Shares knowledge with staff.

* Conducts security assessments and other information security routines consistently. Investigates and recommends corrective…