Job Title: Manager | Cloud Security | Pune | Enterprise Security

Manager | Cloud Security | Pune | Enterprise Security
• Job requisition ID : 106826
• Location: Pune
• Entity: Deloitte Touche Tohmatsu India LLP
Manager – Enterprise Security & Directory Services
Experience : 10+ Years
Location : Pune/Bangalore/Hyderabad/Gurugram/Noida
Designation : Manager
Your Work profile
We are seeking an experienced Manager – Enterprise Security & Directory Services to lead the design, implementation, and governance of enterprise identity, access management, and directory service infrastructure. This role will oversee enterprise authentication systems, directory services, privileged access management, and identity lifecycle processes to ensure secure and efficient access to corporate systems and applications.
The ideal candidate will have deep expertise in Active Directory, identity governance, authentication technologies, access controls, and enterprise security architecture, along with proven experience managing teams and enterprise-scale identity platforms.
Key Skill required:
Enterprise Identity & Access Management
- Lead enterprise Identity and Access Management (IAM) initiatives including identity lifecycle management, provisioning, and access governance.
- Define and implement authentication and authorization strategies across enterprise systems.
- Implement Single Sign-On (SSO), Multi-Factor Authentication (MFA), and identity federation solutions.
- Manage identity governance and role-based access controls (RBAC).
Directory Services Management
- Oversee enterprise directory services architecture and operations, including:
- Microsoft Active Directory (AD)
- Azure Active Directory / Entra ID
- LDAP-based directories
- Manage domain architecture, replication, group policies, and directory synchronization.
- Ensure high availability, performance optimization, and disaster recovery for directory services.
Privileged Access & Identity Security
- Implement and manage Privileged Access Management (PAM) solutions.
- Monitor privileged accounts and enforce least privilege access.
- Implement identity threat detection and access anomaly monitoring.
Security Architecture & Integration
- Integrate identity and directory services with enterprise systems including:
- Cloud platforms
- SaaS applications
- Network infrastructure
- Security tools
- Support Zero Trust identity architecture initiatives.
Compliance & Governance
- Ensure compliance with security frameworks and regulatory standards such as:
- ISO 27001
- NIST
- CIS benchmarks
- SOX / regulatory compliance requirements
- Support internal and external audits related to identity and access management.
Operations & Incident Management
- Manage identity-related incidents, access issues, and service disruptions.
- Establish operational processes for identity provisioning, deprovisioning, and access reviews.
- Ensure continuous monitoring and improvement of identity security controls.
Team Leadership & Stakeholder Collaboration
- Lead and mentor a team of directory services engineers and IAM specialists.
- Collaborate with infrastructure, security, cloud, and application teams.
- Provide strategic guidance and executive reporting on identity and access risks.
Required Qualifications
- Bachelor’s or Master’s degree in Computer Science, Information Security, or related field
- 10–15 years of IT experience, including 5+ years managing identity and directory services environments
- Proven experience in enterprise-scale IAM and directory service management
Required Technical Skills
Directory Services
- Microsoft Active Directory
- Azure AD / Entra ID
- LDAP directory services
- Group Policy management
- Domain architecture and replication
Identity & Access Management
- Identity lifecycle management
- Access governance and certification
- Role-based access control (RBAC)
- Identity federation (SAML, OAuth, OpenID Connect)
Authentication Technologies
- Single Sign-On (SSO)
- Multi-Factor Authentication (MFA)
- Conditional access policies
Security & Integration
- Privileged Access Management (PAM)
- Identity threat detection
- Integration with cloud platforms and SaaS applications
Preferred Certifications
- CISSP (Certified Information Systems Security Professional)
- CISM (Certified Information Security Manager)
- Microsoft Certified: Identity and Access Administrator
- Microsoft Certified: Azure Security Engineer
- Certified Identity and Access Manager (CIAM)
Leadership & Soft Skills
- Strong team leadership and mentoring skills
- Excellent stakeholder communication and collaboration
- Strategic thinking with operational execution capability
- Strong troubleshooting and incident management abilities
Key Success Metrics
- Availability and performance of directory services infrastructure
- Reduction in identity-related security incidents
- Compliance with access governance and audit requirements
- Improvement in identity lifecycle automation and efficiency
