System Engineer ii - azure app registration specialistStefanini
Workplace: Muntinlupa
Salary: Agreement
Work form: Full time
Posting Date: 03/12/2025
Deadline: 03/01/2026
Details:Job Description Azure App Reg, CAPs, App ProxyJob Title: Principal System Engineer - Azure App Registration SpecialistLocation: Philippines - ManilaDepartment: IT Infrastructure, CybersecurityRole Summary:We are seeking a hands-on, detail-oriented Senior Systems Engineer with a strong DevSecOps mindset to operate and support identity and access control mechanisms across hybrid IT and OT environments. This role centers on the day-to-day reliability, compliance, and troubleshooting of Azure-integrated authentication flows and secure access pathways for both human and non-human identities.You'll be responsible for maintaining Azure App Registrations, enforcing Conditional Access policies, and supporting Azure AD Application Proxy deployments. You'll validate and monitor identity protocols such as SAML, OAuth 2.0, OpenID Connect, and Bearer Tokens - using tools like Postman to test and troubleshoot authentication flows and API access.This is a high-impact operational role requiring strong protocol fluency, incident resolution skills, and a passion for secure automation in complex environments.🔐 Key Responsibilities (Protocol & Identity Engineering)
Azure App Registration Operations Integrate, Maintain and troubleshoot Azure AD App Registrations and Enterprise Applications, ensuring service principals and managed identities are correctly configured for secure, automated access.
Conditional Access Policy Enforcement Monitor and support Conditional Access policies to enforce MFA, device compliance, and risk-based access. Assist in resolving access issues and analyzing sign-in logs for policy impact.
Azure AD Application Proxy Support Operate and maintain Azure AD App Proxy connectors to enable secure remote access to on-premises apps. Collaborate with network teams to ensure connectivity and authentication flow integrity.
Postman for Protocol Validation Use Postman to test and validate authentication flows, including OAuth 2.0, OpenID Connect, and SAML. Simulate token requests and troubleshoot API access issues across environments.
SAML Federation Support Maintain SAML-based integrations with third-party applications. Assist in resolving assertion errors, claim mismatches, and metadata synchronization issues.
OAuth 2.0 & OpenID Connect Flow Monitoring Support the operation of OAuth and OIDC flows for both human and non-human identities. Ensure token scopes, lifetimes, and refresh behaviors align with policy and compliance requirements.
Protocol-Level Troubleshooting & Escalation Act as a Tier 3 escalation point for identity-related incidents involving authentication failures, token issues, or access denials. Perform root cause analysis and document resolution steps.
Job RequirementsDetails:Required Qualifications:
Education & Experience:
Associate degree + 7 years of experience, or
Bachelor's degree + 5 years, or
Master's degree + 3 years, or
7+ years of relevant IT/business experience.
Technical Skills:
Operational experience managing Azure App Registrations, Enterprise Applications, and Service Principals in hybrid environments.
Hands-on support of Conditional Access policies, including troubleshooting MFA, device compliance, and location-based access issues.
Experience maintaining Azure AD Application Proxy connectors and resolving authentication flow disruptions.
Proficiency using Postman to validate and troubleshoot OAuth 2.0, OpenID Connect, and SAML authentication flows.
Strong understanding of Web Troubleshooting and URL Shortener Management.
Preferred Experience:
Scripting and automation skills using PowerShell, Python, or similar tools to support identity operations and secrets management.
Knowledge of Azure AD, network security, and access control best practices.
Experience supporting identity governance and compliance audits related to authentication and access protocols.
Supporting global operations and collaborating with cross-functional teams.
Conducting compliance checks and audits related to access control.
Additional Requirements:
🌟 Strong Teamwork Spirit - We thrive on collaboration, mutual support, and shared success. If you're someone who uplifts others and values working together toward common goals, you'll fit right in!
✅ Must be 18+ and willing to undergo drug testing and physicals if required.
🗣️ Excellent English communication skills - both written and verbal, to ensure clear and effective collaboration across a global team.
#LI-LN1 #L1-HYBRIDPay Range:Based on Experience
Stefanini
Azure App Registration Operations Integrate, Maintain and troubleshoot Azure AD App Registrations and Enterprise Applications, ensuring service principals and managed identities are correctly configured for secure, automated access.
Conditional Access Policy Enforcement Monitor and support Conditional Access policies to enforce MFA, device compliance, and risk-based access. Assist in resolving access issues and analyzing sign-in logs for policy impact.
Azure AD Application Proxy Support Operate and maintain Azure AD App Proxy connectors to enable secure remote access to on-premises apps. Collaborate with network teams to ensure connectivity and authentication flow integrity.
Postman for Protocol Validation Use Postman to test and validate authentication flows, including OAuth 2.0, OpenID Connect, and SAML. Simulate token requests and troubleshoot API access issues across environments.
SAML Federation Support Maintain SAML-based integrations with third-party applications. Assist in resolving assertion errors, claim mismatches, and metadata synchronization issues.
OAuth 2.0 & OpenID Connect Flow Monitoring Support the operation of OAuth and OIDC flows for both human and non-human identities. Ensure token scopes, lifetimes, and refresh behaviors align with policy and compliance requirements.
Protocol-Level Troubleshooting & Escalation Act as a Tier 3 escalation point for identity-related incidents involving authentication failures, token issues, or access denials. Perform root cause analysis and document resolution steps.
Job RequirementsDetails:Required Qualifications:
Education & Experience:
Associate degree + 7 years of experience, or
Bachelor's degree + 5 years, or
Master's degree + 3 years, or
7+ years of relevant IT/business experience.
Technical Skills:
Operational experience managing Azure App Registrations, Enterprise Applications, and Service Principals in hybrid environments.
Hands-on support of Conditional Access policies, including troubleshooting MFA, device compliance, and location-based access issues.
Experience maintaining Azure AD Application Proxy connectors and resolving authentication flow disruptions.
Proficiency using Postman to validate and troubleshoot OAuth 2.0, OpenID Connect, and SAML authentication flows.
Strong understanding of Web Troubleshooting and URL Shortener Management.
Preferred Experience:
Scripting and automation skills using PowerShell, Python, or similar tools to support identity operations and secrets management.
Knowledge of Azure AD, network security, and access control best practices.
Experience supporting identity governance and compliance audits related to authentication and access protocols.
Supporting global operations and collaborating with cross-functional teams.
Conducting compliance checks and audits related to access control.
Additional Requirements:
🌟 Strong Teamwork Spirit - We thrive on collaboration, mutual support, and shared success. If you're someone who uplifts others and values working together toward common goals, you'll fit right in!
✅ Must be 18+ and willing to undergo drug testing and physicals if required.
🗣️ Excellent English communication skills - both written and verbal, to ensure clear and effective collaboration across a global team.
#LI-LN1 #L1-HYBRIDPay Range:Based on Experience
Stefanini
Other Info
Alabang, Muntinlupa City
Permanent
Full-time
Permanent
Full-time
Submit profile
Stefanini
About the company
Stefanini jobs
Pasay, Metro Manila
MuntinlupaAgreement
SOAR Automation Engineer (Alabang)
MuntinlupaAgreement
Systems Engineer, Sr. - Amplify (Alabang)
MuntinlupaAgreement
Position System Engineer ii - azure app registration specialist recruited by the company Stefanini at Muntinlupa, Joboko automatically collects the salary of , finds more jobs on System Engineer II - Azure App Registration Specialist or Stefanini company in the links above