Senior Domain Lead-AD/IDAM

2 weeks ago

Mumbai, India SUN PHARMA Full time

Hi,

We are having an opening for Senior Domain Lead-AD/IDAM & Email Lead/Architect at our Mumbai location

Job Summary
: We are seeking an accomplished and strategic
Senior Domain Lead
to oversee enterprise
email and collaboration systems
,
Active Directory (AD)
,
Identity & Access Management (IDAM)
, and their
security and cloud integrations
. The role focuses on end-to-end management and security governance across hybrid environments, ensuring scalable, secure, and compliant digital identity and collaboration infrastructure.

Areas Of Responsibility
:

Key Responsibilities:

1. Infrastructure & Operations Management

  • Manage daily operations for Microsoft 365 (Exchange Online, Teams, SharePoint), Active Directory (on-prem and Azure AD), and domain services.
  • Ensure stability and performance of hybrid AD and collaboration systems through proactive monitoring and incident management.
  • Maintain internal and public DNS, DHCP, certificates, and domain name configurations.

2. Identity & Access Management (IDAM)

  • Own the implementation and operation of IDAM platforms supporting user lifecycle management, access provisioning, and deprovisioning.
  • Design and manage
    SSO, MFA, conditional access
    , and
    privileged access controls (PAM)
    using tools like Azure AD, SailPoint, or Saviynt.
  • Ensure proper
    RBAC models, access certifications, and policy enforcement
    across systems.

3. Email & AD Security

  • Strengthen security posture of
    email systems
    by configuring and maintaining anti-phishing, DLP, spam filtering, and encryption tools (e.g., Microsoft Defender for Office 365, Mimecast, Proofpoint).
  • Implement and maintain
    DMARC, DKIM, SPF
    , and secure mail flow policies.
  • Lead
    AD security hardening
    , including Tiered Administration, Kerberos policies, ACL reviews, and delegation best practices.
  • Enforce
    least privilege
    ,
    admin account separation
    , and monitoring of high-privilege actions (via SIEM or native auditing tools).

Key Responsibilities:

1. Infrastructure & Operations Management

  • Manage daily operations for Microsoft 365 (Exchange Online, Teams, SharePoint), Active Directory (on-prem and Azure AD), and domain services.
  • Ensure stability and performance of hybrid AD and collaboration systems through proactive monitoring and incident management.
  • Maintain internal and public DNS, DHCP, certificates, and domain name configurations.

2. Identity & Access Management (IDAM)

  • Own the implementation and operation of IDAM platforms supporting user lifecycle management, access provisioning, and deprovisioning.
  • Design and manage
    SSO, MFA, conditional access
    , and
    privileged access controls (PAM)
    using tools like Azure AD, SailPoint, or Saviynt.
  • Ensure proper
    RBAC models, access certifications, and policy enforcement
    across systems.

3. Email & AD Security

  • Strengthen security posture of
    email systems
    by configuring and maintaining anti-phishing, DLP, spam filtering, and encryption tools (e.g., Microsoft Defender for Office 365, Mimecast, Proofpoint).
  • Implement and maintain
    DMARC, DKIM, SPF
    , and secure mail flow policies.
  • Lead
    AD security hardening
    , including Tiered Administration, Kerberos policies, ACL reviews, and delegation best practices.
  • Enforce
    least privilege
    ,
    admin account separation
    , and monitoring of high-privilege actions (via SIEM or native auditing tools).
  • Partner with SOC and Security teams to respond to identity and email-related threats or incidents.

4. Cloud Integration & Identity Governance

  • Administer and secure cloud identity solutions across Azure, Microsoft 365, and third-party SaaS platforms.
  • Align hybrid AD and Azure AD with cloud security frameworks and Zero Trust principles.
  • Manage B2B/B2C identities, OAuth/SAML integrations, and conditional access policies for external partners.

5. Projects & Transformation

  • Lead initiatives such as:
  • Email platform migration or consolidation (e.g., from on-prem to M365),
  • Deployment of IDAM platforms,
  • Secure collaboration tool rollouts,
  • Cloud-first identity transformations.
  • Define project scope, success metrics, resource plans, and stakeholder engagement strategy.

6. Compliance, Governance & Risk Management

  • Define and maintain governance frameworks for collaboration, identity, and directory services.
  • Ensure alignment with compliance standards (e.g., GDPR, ISO 27001, HIPAA, SOX).
  • Conduct periodic access reviews, admin audits, and mailbox permissions checks.
  • Own documentation, runbooks, and policy lifecycle management.

7. Vendor & License Management

  • Manage third-party service providers and tools across email security, cloud identity, and collaboration suites.
  • Oversee licensing, renewals, and performance reviews.
  • Evaluate and onboard new solutions as per evolving enterprise needs.

8. Leadership & People Management

  • Lead a team of email, AD, cloud, and IDAM specialists.
  • Assign responsibilities, set goals, and promote cross-skilling and upskilling.
  • Ensure availability through structured support models, escalation procedures, and documentation.

Educational Qualification
: Degree or appropriate professional qualification

Specific Certification
:

Certification & Trainings on following technology domains:

  • Microsoft Certified: Enterprise Administrator Expert
  • Microsoft Certified: Identity and Access Administrator Associate
  • Azure Administrator / Security Engineer Associate
  • Certified Information Systems Security Professional (CISSP) optional but a plus
  • ITIL Foundation / Intermediate

  • Project Management Certification (PMP / Prince2)

  • Experience
    : 12-15 Years of experience

Skill (Functional & Behavioural):

Technical Skills:

  • Microsoft 365 administration: Exchange, Teams, SharePoint, Defender for O365
  • Hybrid AD and Azure AD, including AD Connect, GPOs, DNS, DHCP
  • PowerShell scripting for automation and reporting
  • Identity tools: SailPoint, Okta, Saviynt, Azure AD Premium
  • Email security protocols: SPF, DKIM, DMARC
  • Email filtering & security: Defender, Mimecast, Proofpoint
  • AD security best practices and hardening (LAPS, tiering, auditing)
  • Cloud identity and app integration (OAuth, SAML)

Soft Skills:

  • Strong leadership, communication, and cross-functional collaboration
  • High attention to detail, especially around security and compliance
  • Problem-solving under pressure and with complex systems
  • Strategic thinking with a proactive mindset toward continuous improvement
  • Pharma industry experience is an advantage.

  • Senior Domain Lead-AD/IDAM

    14 hours ago

    Mumbai, India SUN PHARMA Full time

    Hi,We are having an opening for Senior Domain Lead-AD/IDAM & Email Lead/Architect at our Mumbai locationJob Summary : We are seeking an accomplished and strategic Senior Domain Lead to oversee enterprise email and collaboration systems , Active Directory (AD) , Identity & Access Management (IDAM) , and their security and cloud integrations . The role...

  • Senior Domain Lead-AD/IDAM

    20 hours ago

    Mumbai, India SUN PHARMA Full time

    Hi,We are having an opening for Senior Domain Lead-AD/IDAM & Email Lead/Architect at our Mumbai locationJob Summary : We are seeking an accomplished and strategic Senior Domain Lead to oversee enterprise email and collaboration systems, Active Directory (AD), Identity & Access Management (IDAM), and their security and cloud integrations. The role focuses on...

  • Senior Domain Lead-AD/IDAM

    15 hours ago

    Mumbai, India SUN PHARMA Full time

    Hi, We are having an opening for Senior Domain Lead-AD/IDAM & Email Lead/Architect at our Mumbai location Job Summary : We are seeking an accomplished and strategic Senior Domain Lead to oversee enterprise email and collaboration systems , Active Directory (AD) , Identity & Access Management (IDAM) , and their security and cloud integrations . The role...

  • Senior Manager

    17 hours ago

    Mumbai, Maharashtra, India Sun Pharmaceutical Industries Full time

    Job Title Email Domain Identity Virtualization SME Job Grade refer to JE Senior Manager -2 G9B Function Information Technology Sub-function Infra IT Manager s Job Label AD IDAM Email Lead Architect Skip Level Manager s Label Global Head DC SNOC Function Head Title SM DGM Location Mumbai Areas Of Responsibility At Sun Pharma...

  • Dgs Mdm Domain Lead

    4 days ago

    Thane, Maharashtra - Mumbai, Maharashtra, India Dentsu Full time

    The Master Data Management MDM Domain Lead will oversee the strategic direction and operational execution of master data management for specific domains data products within the organization This role is responsible for ensuring data accuracy consistency and governance across systems and processes while aligning with overall business objectives and...

  • AD support engineer

    7 days ago

    Navi Mumbai, Maharashtra, India Three Ess Computer Services (I) Pvt. Ltd. Full time ₹ 4,20,000 - ₹ 5,40,000 per year

    Key ResponsibilitiesActive Directory engineer's responsibilities extend beyond daily administration and troubleshooting to include architecture, security, and project leadership.· Advanced Troubleshooting and Support: Act as the highest escalation point for complex issues related to AD, Group Policy Objects (GPOs), LDAP, DNS, and replication.·...

  • Sales Manager â Identity

    3 days ago

    Mumbai Metropolitan Region, India Tech Prescient Full time US$ 9,00,000 - US$ 12,00,000 per year

    Position:Sales Manager – Identity & Access Management (IGA/IDAM Solutions)Mode - PermanentBase Location:MumbaiExperience:7–8 yearsDomain Focus:BFSI (Banking, Financial Services & Insurance), IT and Retail ClientsDesired Skills & CompetenciesProven track record in selling Identity & Access Management (IAM/IGA/IDAM) or Identity Security solutions.Excellent...

  • Infrastructure Domain Architect

    1 week ago

    Mumbai, Maharashtra, India Wipro Limited Full time

    Mumbai, India - Tech Hiring - 3109975 **Role Purpose** - _Understanding of Customer strategies and business requirement _ - _Create Architectural technologies and business roadmap that result in strong business / IT alignment and drive adoption, usages of technology across the enterprise_ - _Collaborate with key other infra domain, presales and customer...

  • Senior Product Engineer- Banking Domain Java_Mumbai

    3 days ago

    Mumbai, Maharashtra, India Tata Consultancy Services Full time ₹ 20,00,000 - ₹ 25,00,000 per year

    Role-Senior Product Engineer- Banking Domain JavaExperience-4-8 YearsLocation-Mumbai, ThaneSkills- Java Spring boot development , Rest APIBanking domain knowledge , Java Spring boot development , Rest API , Service Integration, SQL , Cloud , CI/CD. Agile

  • Infrastructure Domain Architect

    5 days ago

    Mumbai, Maharashtra, India Wipro Limited Full time

    **Role Purpose** - Understanding of Customer strategies and business requirement - Create Architectural technologies and business roadmap that result in strong business / IT alignment and drive adoption, usages of technology across the enterprise - Collaborate with key other infra domain, presales and customer architect - Have strong delivery & solution...