SENIOR CONSULTANT
Pune, IN
Experience: 10+ years
Location: Mumbai, Bangalore & Chennai
Primary skills: On Premise AD, Azure AD, Azure AD Connect, PKI & ADFS
Interested candidate share their updated resume to prabhu.v@atos.net
Job Summary
We are looking for a highly skilled IAM & PKI Engineer with strong expertise in Active Directory Certificate Services (AD PKI), Azure Entra ID (Azure AD), ADFS, and NDES/SCEP. The role involves designing, implementing, securing, and maintaining identity and certificate‑based authentication solutions across hybrid (on‑prem + cloud) environments.
Strong hands‑on experience with:
AD PKI / AD CS Azure Entra ID (Azure AD) ADFS NDES / SCEP
Key Responsibilities
Active Directory & PKI (AD CS) Design, deploy, and manage Enterprise PKI infrastructure Root CA, Issuing CA, Offline CA models Troubleshoot PKI issues related Perform CA hardening, backup, and disaster recovery testing
NDES / SCEP
Deploy and manage NDES for device certificate enrollment Integrate NDES with: Intune Third‑party MDMs Network devices (Wi‑Fi, VPN, firewalls) Configure registration authority policies and security Troubleshoot SCEP enrollment failures and renewal issues
Azure Entra ID (Azure AD)
Manage hybrid identity environments (On‑prem AD + Entra ID) Configure: Azure AD Connect / Cloud Sync Seamless SSO Password Hash Sync / Pass‑Through Authentication Implement identity security features: Conditional Access MFA Identity Protection Support certificate‑based authentication with Entra ID Monitor sign‑ins and security logs
ADFS (Active Directory Federation Services)
Design and manage ADFS infrastructure Configure:
Claims‑based authentication Relying party trusts OAuth / SAML integrations
Manage ADFS certificates:
Service Communication Token‑Signing & Token‑Decrypting
Troubleshoot authentication and federation issues Plan and perform ADFS upgrades and migrations (including ADFS to Entra ID modernization)
SC‑300 (Identity & Access Administrator) AZ‑104 / AZ‑305 Windows Server / Security certifications