Cybersecurity Engineer - Federation

We are seeking a skilled Cybersecurity Engineer with expertise in Microsoft Entra (Azure AD) and Identity and Access Management (IAM) to design, implement, manage Enterprise Applications and App Registrations. This role is responsible for securing user, workload, and application access while enabling business productivity through modern, zero‑trust identity controls. The ideal candidate has hands‑on experience with Application Federation, SaaS, SAML, OIDC, Microsoft Entra Enterprise Applications/App Registrations, and is comfortable troubleshooting complex authentication and access issues in enterprise environments.

Truist will not sponsor an applicant for work visa status or employment authorization, nor will we offer any immigration‑related support for this position (including, but not limited to H‑1B, F‑1 OPT, F‑1 STEM OPT, F‑1 CPT, J‑1, TN‑1 or TN‑2, E‑3, O‑1, or future sponsorship for U.S. lawful permanent residence status.)

• Design, implement and manage Microsoft Entra Enterprise Applications (SAML, OIDC)
• Be familiar with ticketing systems such as Service Now
• Have a customer service approach to helping application teams through the process

• Manage and secure identities, roles, and access for users, groups, and applications
• Secure access to cloud and enterprise applications (SAML, OIDC, OAuth)
• Support identity lifecycle processes including onboarding, role changes, and offboarding

• Automate Enterprise Applications using Power Shell and Microsoft Graph API
• Build repeatable, scalable identity security solutions and policy templates
• Implement monitoring, alerting, and reporting for authentication and access events

• Partner with IT, cloud, and application teams to resolve access issues without weakening security
• Perform root‑cause analysis on access‑related incidents and security events

• Ensure application federation configurations align with organizational security standards and compliance requirements (e.g., NIST, ISO, SOC, CMMC, etc.)
• Participate in security assessments and continuous improvement initiatives

• Analyze information to determine, recommend, and plan the use of new information security technologies or modifications to existing equipment and systems that will provide capability for proposed project or workload, efficient operation and effective use of allotted resources
• Assist the implementation of new information security technologies or integration of existing technologies including initial configuration, installation, change management, and operational handoff for SaaS applications
• Responsible for technical support of SaaS technologies providing expert problem analysis and resolution in a timely manner

• Bachelor’s degree and five years of experience in systems engineering or administration or an equivalent combination of education and work experience
• In‑depth knowledge in applied enterprise information security technologies including but not limited to firewalls, intrusion detection/prevention systems, network operating systems, identity management, database activity monitoring, encryption, content filtering, and Mainframe security
• Previous experience in planning and managing IT projects

• Master’s degree or MBA and eight years of experience or an equivalent combination of education and work experience
• Direct experience with Application Federation, SaaS, SAML, OIDC, Microsoft Entra Enterprise Applications/App Registrations
• Strong communications skills and ability to drive work to completion
• Strong hands‑on experience with Microsoft Entra  (Azure AD)
• Solid understanding of Identity and Access Management concepts and best practices
• Experience with MFA, SSO, RBAC, PIM, and identity lifecycle management
• Proficiency with Power Shell and/or Microsoft Graph API for automation
• Strong troubleshooting skills across authentication, authorization, and access flows
• Banking or financial services experience

Onsite, office‑centric (5 days a…