Senior Domain Lead-AD/IDAM

3 weeks ago

Mumbai Maharashtra India, Maharashtra SUN PHARMA Full time

Hi,


We are having an opening for Senior Domain Lead-AD/IDAM & Email Lead/Architect at our Mumbai location


Job Summary : We are seeking an accomplished and strategic Senior Domain Lead to oversee enterprise email and collaboration systems, Active Directory (AD), Identity & Access Management (IDAM), and their security and cloud integrations. The role focuses on end-to-end management and security governance across hybrid environments, ensuring scalable, secure, and compliant digital identity and collaboration infrastructure.



Areas Of Responsibility :

Key Responsibilities:

1. Infrastructure & Operations Management

  • Manage daily operations for Microsoft 365 (Exchange Online, Teams, SharePoint), Active Directory (on-prem and Azure AD), and domain services.
  • Ensure stability and performance of hybrid AD and collaboration systems through proactive monitoring and incident management.
  • Maintain internal and public DNS, DHCP, certificates, and domain name configurations.

2. Identity & Access Management (IDAM)

  • Own the implementation and operation of IDAM platforms supporting user lifecycle management, access provisioning, and deprovisioning.
  • Design and manage SSO, MFA, conditional access, and privileged access controls (PAM) using tools like Azure AD, SailPoint, or Saviynt.
  • Ensure proper RBAC models, access certifications, and policy enforcement across systems.

3. Email & AD Security

  • Strengthen security posture of email systems by configuring and maintaining anti-phishing, DLP, spam filtering, and encryption tools (e.g., Microsoft Defender for Office 365, Mimecast, Proofpoint).
  • Implement and maintain DMARC, DKIM, SPF, and secure mail flow policies.
  • Lead AD security hardening, including Tiered Administration, Kerberos policies, ACL reviews, and delegation best practices.
  • Enforce least privilege, admin account separation, and monitoring of high-privilege actions (via SIEM or native auditing tools).


Key Responsibilities:

1. Infrastructure & Operations Management

  • Manage daily operations for Microsoft 365 (Exchange Online, Teams, SharePoint), Active Directory (on-prem and Azure AD), and domain services.
  • Ensure stability and performance of hybrid AD and collaboration systems through proactive monitoring and incident management.
  • Maintain internal and public DNS, DHCP, certificates, and domain name configurations.

2. Identity & Access Management (IDAM)

  • Own the implementation and operation of IDAM platforms supporting user lifecycle management, access provisioning, and deprovisioning.
  • Design and manage SSO, MFA, conditional access, and privileged access controls (PAM) using tools like Azure AD, SailPoint, or Saviynt.
  • Ensure proper RBAC models, access certifications, and policy enforcement across systems.

3. Email & AD Security

  • Strengthen security posture of email systems by configuring and maintaining anti-phishing, DLP, spam filtering, and encryption tools (e.g., Microsoft Defender for Office 365, Mimecast, Proofpoint).
  • Implement and maintain DMARC, DKIM, SPF, and secure mail flow policies.
  • Lead AD security hardening, including Tiered Administration, Kerberos policies, ACL reviews, and delegation best practices.
  • Enforce least privilege, admin account separation, and monitoring of high-privilege actions (via SIEM or native auditing tools).
  • Partner with SOC and Security teams to respond to identity and email-related threats or incidents.

4. Cloud Integration & Identity Governance

  • Administer and secure cloud identity solutions across Azure, Microsoft 365, and third-party SaaS platforms.
  • Align hybrid AD and Azure AD with cloud security frameworks and Zero Trust principles.
  • Manage B2B/B2C identities, OAuth/SAML integrations, and conditional access policies for external partners.

5. Projects & Transformation

  • Lead initiatives such as:
  • Email platform migration or consolidation (e.g., from on-prem to M365),
  • Deployment of IDAM platforms,
  • Secure collaboration tool rollouts,
  • Cloud-first identity transformations.
  • Define project scope, success metrics, resource plans, and stakeholder engagement strategy.

6. Compliance, Governance & Risk Management

  • Define and maintain governance frameworks for collaboration, identity, and directory services.
  • Ensure alignment with compliance standards (e.g., GDPR, ISO 27001, HIPAA, SOX).
  • Conduct periodic access reviews, admin audits, and mailbox permissions checks.
  • Own documentation, runbooks, and policy lifecycle management.

7. Vendor & License Management

  • Manage third-party service providers and tools across email security, cloud identity, and collaboration suites.
  • Oversee licensing, renewals, and performance reviews.
  • Evaluate and onboard new solutions as per evolving enterprise needs.

8. Leadership & People Management

  • Lead a team of email, AD, cloud, and IDAM specialists.
  • Assign responsibilities, set goals, and promote cross-skilling and upskilling.
  • Ensure availability through structured support models, escalation procedures, and documentation.

Educational Qualification : Degree or appropriate professional qualification


Specific Certification :

Certification & Trainings on following technology domains:

  • Microsoft Certified: Enterprise Administrator Expert
  • Microsoft Certified: Identity and Access Administrator Associate
  • Azure Administrator / Security Engineer Associate
  • Certified Information Systems Security Professional (CISSP) optional but a plus
  • ITIL Foundation / Intermediate
  • Project Management Certification (PMP / Prince2)


  • Experience : 12-15 Years of experience


Skill (Functional & Behavioural):

Technical Skills:

  • Microsoft 365 administration: Exchange, Teams, SharePoint, Defender for O365
  • Hybrid AD and Azure AD, including AD Connect, GPOs, DNS, DHCP
  • PowerShell scripting for automation and reporting
  • Identity tools: SailPoint, Okta, Saviynt, Azure AD Premium
  • Email security protocols: SPF, DKIM, DMARC
  • Email filtering & security: Defender, Mimecast, Proofpoint
  • AD security best practices and hardening (LAPS, tiering, auditing)
  • Cloud identity and app integration (OAuth, SAML)

Soft Skills:

  • Strong leadership, communication, and cross-functional collaboration
  • High attention to detail, especially around security and compliance
  • Problem-solving under pressure and with complex systems
  • Strategic thinking with a proactive mindset toward continuous improvement
  • Pharma industry experience is an advantage.

  • Domain Solution Architect Lead

    2 weeks ago

    Mumbai, Maharashtra, India, Maharashtra SID Global Solutions Full time

    Job Title: Domain Solution Architect LeadExperience Level: ~10 yearsRole Type: Domain / Solution ArchitectureRole Overview:The Domain Solution Architect Lead is responsible for driving the architectural vision, strategy, and standards across multiple business domains. This role ensures solution consistency, scalability, and alignment with enterprise-wide...

  • Senior Executive

    2 weeks ago

    Mumbai, Maharashtra, India, Maharashtra LEAD Group Full time

    ABOUT THE ROLEThe AP Executive will be responsible for managing the end-to-end Accounts Payable process, ensuring accurate and timely processing of vendor invoices while maintaining compliance with statutory requirements. The role includes performing GL account analysis, supporting month-end and year-end closings, managing the AP Help Desk, and assisting...

  • AD support engineer

    2 weeks ago

    Navi Mumbai, Maharashtra, India Three Ess Computer Services (I) Pvt. Ltd. Full time ₹ 4,20,000 - ₹ 5,40,000 per year

    Key ResponsibilitiesActive Directory engineer's responsibilities extend beyond daily administration and troubleshooting to include architecture, security, and project leadership.· Advanced Troubleshooting and Support: Act as the highest escalation point for complex issues related to AD, Group Policy Objects (GPOs), LDAP, DNS, and replication.·...

  • Senior Technical Lead Business Analyst

    3 weeks ago

    Mumbai, Maharashtra, India, Maharashtra Planit Full time

    Role: Senior Technical Lead Business Analyst Experience: 8 -12 years The Lead Technical Business Analyst plays a crucial role in bridging the gap between business needs and technical solutions. The individual will lead a team of analysts, collaborate with stakeholders, and contribute to the development and implementation of strategic initiatives within the...

  • Quality Assurance Lead

    6 days ago

    Mumbai, Maharashtra, India NETSACH GLOBAL Full time ₹ 8,00,000 - ₹ 12,00,000 per year

    Greetings rom Netsach - A Cyber Security Company.Job SummaryWe are seeking a skilled Quality Assurance (QA) Lead to oversee the quality assurance processes. The QA Lead will be responsible for ensuring the reliability, functionality, performance, and security of our products through comprehensive testing methodologies. The ideal candidate is proficient in...

  • SailPoint Developer

    3 weeks ago

    Pune, Maharashtra, India, Maharashtra Webologix Ltd INC Full time

    Job Position: SailPoint DeveloperLocation: Pune, INExperience: 5+ to 10+ YearsMandatory Skills: JavaScript, Java Development, Data Encryption and Key Management, AM - SailPoint IIQ, IDAM - SailPoint Identity Now, Identity Governance, Java SpringBoot Good to Have Skills : IDAM - SailPoint Identity NowKey ResponsibilitiesSailPoint experience for access...

  • Identity Management Consultant

    3 weeks ago

    Pune, Maharashtra, India, Maharashtra Webologix Ltd INC Full time

    Job Position: IAM Engineer – SailPoint FocusJob Type: Full-Time Location: PuneExperience: 5+ to 10+ YearsMandatory Skills: JavaScript, Java Development, Data Encryption and Key Management, IAM - SailPoint IIQ,IDAM - Sailpoint Identity Now, Identity Governance, Java SpringBoot Good to Have Skills : IDAM - Sailpoint Identity NowJob Summary:Sailpoint...

  • Senior Consultant

    3 weeks ago

    Mumbai, Maharashtra, India, Maharashtra Aumento Full time

    ResponsibilitiesHands on expertise in ABAP Cloud, CSD, Odata, Gateway, IDOC, Adobe Forms, ABAP OO, BOPF, Workflows, Forms, UI5, Fiori, ATC and code inspector configurations.Experienced in leading the teams and capable to drive varied initiatives.Must have SAP S/4HANA implementation project experience from the Prepare/Explore phase till Run phase.Highly...

  • Senior Project Manager

    2 weeks ago

    Mumbai, Maharashtra, India Brookdale Senior Living Full time ₹ 8,00,000 - ₹ 24,00,000 per year

    DepartmentTechnology | Product OpsJob posted onOct 18, 2025Employment typePermanentSenior Project Manager (Product-Lead) — Education Applications (Daskalos)Location: India (multi-city) • Function: Product & Delivery • Type: Full-timeRole SummaryOwn end-to-end delivery of school/HE applications across multiple campuses with a strong product and...

  • Code Takeover Lead

    2 weeks ago

    Mumbai, Maharashtra, India, Maharashtra SID Global Solutions Full time

    Job Role: Code Takeover LeadExperience: 10+ YearsLocation: Mumbai (Onsite)Job Summary:We are seeking a highly experienced Code Takeover Lead with a proven track record of driving strategic accounts and converting competitor-managed clients. The ideal candidate will be responsible for identifying, nurturing, and closing opportunities to transition existing...