Lead Entra Security Engineer
Owensboro, Daviess County, Kentucky, 42302, USA
Listed on 2026-07-07
-
IT/Tech
Cybersecurity, Systems Engineer
Job Overview
Become a part of our caring community. Selected candidate must reside within approximately 60 minutes driving distance from one of the following locations:
Louisville KY, NYC Metro, Dallas Metro, Charlotte NC Metro, South Florida (Tampa/Miami/Ft Lauderdale), Washington DC metro, Chicago, Boston, Atlanta, Nashville.
- Engineer, implement, and help design identity controls across multiple Entra tenants, including Conditional Access, MFA, Identity Protection, and governance capabilities.
- Implement and standardize cross-tenant access patterns, partnering on design decisions for B2B collaboration, Multi-Tenant Organizations (MTO), and external identity controls.
- Lead implementation of Privileged Identity Management (PIM), access reviews, and least privilege access models.
- Engineer and optimize authentication and SSO integrations (SAML, OAuth, OIDC) across SaaS and enterprise applications.
- Execute tenant standardization efforts, ensuring consistent policies, authentication methods, and governance controls.
- Troubleshoot and resolve complex authentication, authorization, and provisioning issues.
- Develop automation using Power Shell, Microsoft Graph, Terraform, Azure Logic Apps, etc. to scale identity operations.
- Partner with application and platform teams to embed identity-security-by-design into solutions and integrations.
- Contribute to and operationalize identity security baselines aligned to Zero Trust principles.
- Identify, engineer, and implement improvements to strengthen identity posture, reduce risk, and improve user experience.
- Create and maintain reusable engineering patterns, scripts, and documentation for Entra security controls.
- Use your skills to make an impact.
- 7+ years of experience in identity engineering, IAM architecture, or cloud identity security in large environments.
- Deep expertise in Microsoft Entra (Azure AD) across multi-tenant environments.
- Strong hands-on experience with Conditional Access and MFA strategy, Privileged Identity Management (PIM), Identity Protection and governance, B2B, Multi-Tenant Org (MTO) and cross-tenant access configurations, Entra
-In, Audit, and other security log analysis, and Azure RBAC. - Hands-on experience or commensurate knowledge of datacenter technologies and topologies.
- Azure IaaS/PaaS infrastructure.
- Common enterprise user networking technologies such as VPN, SASE/ZTNA.
- Intune and Microsoft 365 suite.
- Virtual Desktop Infrastructure technologies.
- Microsoft Purview/DLP technologies.
- Strong understanding of modern identity protocols (OIDC, OAuth2, SAML).
- Experience integrating identity into SaaS, APIs, and enterprise platforms.
- Proven ability to design, implement, and standardize identity controls at scale.
- Strong automation skills (Power Shell, Microsoft Graph, Terraform or similar).
- Ability to translate architectural vision into executable engineering outcomes.
- Ability to influence cross-functional teams.
- Hands-on problem solver capable of supporting complex identity escalations.
- Experience with multi-tenant governance or identity transformation initiatives.
- Familiarity with hybrid identity (Entra Connect / Cloud Sync) and identity monitoring tools.
- Experience operating in regulated environments (SOX, HIPAA, etc.).
- Relevant certifications (SC-300, SC-100, CISSP).
Employees must provide a self-served internet connection that meets the following minimum criteria: a download speed of at least 25 Mbps and an upload speed of at least 10 Mbps. A wireless, wired cable, or DSL connection is suggested. The Internet speed may need upgrading to satisfy business needs. Employees must work from a dedicated space with minimal interruptions to protect PHI/HIPAA information.
Travel:
While this is a remote position, occasional travel to Humana's offices for training or meetings may be required.
40 hours per week.
CompensationPay Range: $142,300 - $195,700 per year. The range may vary based on geographic location and individual factors. The position is eligible for a bonus incentive plan based on company and/or individual performance.
BenefitsCompetitive benefits include medical, dental, and vision coverage; a 401(k) retirement savings plan; time off (paid time off, company and personal holidays, paid parental and caregiver leave); short-term and long-term disability; and life insurance.
Equal Opportunity EmployerHumana is an equal-opportunity employer and does not discriminate based on race, color, religion, sex, sexual orientation, gender identity, national origin, age, marital status, genetic information, disability, or protected veteran status. Humana also takes affirmative action to employ and advance individuals with disability or protected veteran status, and all employment decisions are based only on valid job requirements.
#J-18808-Ljbffr(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).