What Jobs are available for Azure Ad in Hong Kong?

• Proficiency in PowerShell scripting and automating compliance reports.
• Level 3 expertise in Active Directory (AD) hardening, including assessment of AD structure, configuration, Group Policy Objects (GPOs), auditing and monitoring, access control and permissions, compliance, and backup and recovery strategies.
• Knowledge of Active Directory components, such as Active Directory Users and Computers, Active Directory Certificate Services, and Active Directory Sites and Services.
• Experience in DNS and DHCP provisioning.
• Management of Group Policy Objects.
• Familiarity with Entra ID (formerly Azure AD).
• Understanding of Azure Conditional Access Policies.
• Experience with Azure App and Enterprise App registrations.
• Onboarding of Azure User and Guest Accounts.
• Analysis of domain controller logs.
• Implementation of automation use cases, with knowledge of platform-based solutions and integration with existing tools.

Good -To-Have:

• Proficiency in PowerShell scripting and automating compliance reports.
• Level 3 experience in AD hardening, focusing on AD structure, configuration, GPOs, auditing and monitoring, access control and permissions, compliance, and backup and recovery strategies.
• Management of Group Policy Objects.
• Familiarity with Entra ID (formerly Azure AD).
• Understanding of Azure Conditional Access Policies.
• Experience with Azure App and Enterprise App registrations.
• Onboarding of Azure User and Guest Accounts.

Join Tata Consultancy Services, Asia Pacific and be part of an organization committed to sustainable development for our future. TCS follows the Tata group philosophy of building sustainable businesses that are rooted in the community and demonstrate care for the environment. Our unique values position us to combine a purpose-driven worldview with digital innovation, collaborating with customers, communities and governments to lead and shape innovative solutions for a sustainable future. TCS has been carbon neutral in its operations across 11 countries, 12 delivery centres and 18 offices in Asia Pacific since 2022. This is only the initial stage in TCS' journey as we strive to achieve long-term net zero emissions by 2030.

Corporate sustainability is embedded in our triple-bottom-line, focusing on people, the planet, and our purpose. Our offices are designed with eco-friendly features that significantly reduce our carbon footprint and enhance energy efficiency. We actively champion green initiatives, such as promoting paperless operations, implementing energy-efficient practices, and fostering employee engagement in sustainability efforts. When you become part of the TCS family, you will play an essential role dedicated to innovation, excellence, and crafting a brighter, greener future together. Join us and be a part of our mission to drive sustainability through technology and talent at Tata Consultancy Services, APAC today

Required Technical Skill Set

• Expertise in Powershell scripting, compliance reports automation
• Level3 experience in AD hardening to assess AD structure, configuration, GPOs, Audit and monitoring, Access control and permission, compliance, backup and recovery strategy
• Active Directory (Including but not limited to Active Directory Users and Computers,
• Active Directory Certificate Service, Active Directory Sites and Services)
• DNS Provisioning
• DHCP Provisioning
• Group Policy Object Management
• Entra ID (Formerly Azure AD)
• Azure Conditional Access Policy
• Azure App Enterprise App registrations
• Azure User Guest Account Onboarding
• Domain controller logs analysis
• Automation use cases implementation - knowledge in the platform-based solution, implement with the existing tools

Desired Competencies (Technical/Behavioral Competency)

Must-Have

• Expertise in Powershell scripting, compliance reports automation
• Level3 experience in AD harderning to assess AD structure, configuration, GPOs, Audit and monitoring, Access control and permission, compliance, backup and recovery strategy
• Group Policy Object Management
• Entra ID (Formerly Azure AD)
• Azure Conditional Access Policy
• Azure App Enterprise App registrations
• Azure User Guest Account Onboarding

Good-to-Have

• ITIL Tools - Remedy, ServiceNow
• ITIL Practices - Service Management, Incident Management, Change Management
• Vulnerability mitigation on domain controllers
• Domain controllers build & decommission
• DC replication and troubleshooting

Responsibility of / Expectations from the Role

• Must deliver Powershell scripts as per the customer requirements
• Indenpendedly handle the POCs, RFCs, deliver the solutions by reviewing the technical architecture
• Responsible to handle level3 activities in the Active directory and Azure Active Directory
• Act as go to person for all technical guidance and customer requirements
• Experience in the detailed documentation, deliver accordingly
• Identify the opportunities for automation, improve the customer experience and reduce the resolution time of requests and incidents

Other Benefits

• Double Pay
• Five Day work week
• Life Insurance
• Medical Insurance
• Dental Insurance

The Company

Global and reputable company.

The Role

• Lead the design, implementation, and management of Identity and Access Management (IAM) systems, ensuring robust security, scalability, and alignment with business objectives.
• Administer, install, integrate, and deploy one or more IAM solutions, such as
  Okta, Microsoft Entra ID (Azure AD), SailPoint, Ping/ForgeRock, Oracle, Saviynt
  , or equivalent platforms.
• Collaborate with cross-functional teams to integrate IAM solutions with various applications and systems, ensuring seamless functionality and user experience.
• Develop, troubleshoot, and maintain custom scripts for automation and process optimization using
  PowerShell
  and
  BeanShell
  scripting.
• Evaluate and implement tools and policies for role-based access control (RBAC), provisioning, deprovisioning, single sign-on (SSO), and multi-factor authentication (MFA).
• Monitor the performance and security of IAM systems, identifying and addressing vulnerabilities or inefficiencies proactively.
• Stay updated on industry trends in IAM technologies and frameworks to recommend and apply best practices.
• Create and document standards, procedures, and workflows related to IAM processes and technologies.
• Provide guidance and technical support to teams and act as a subject matter expert on IAM-related initiatives.

Your Profile

• Bachelor's degree in Computer Science, Engineering, or a related technical field, or equivalent work experience.

• Strong
  hands-on experience
  with one or more IAM solutions, such as
  Okta, Microsoft Entra ID, SailPoint, Ping/ForgeRock, Oracle, Saviynt
  , or similar platforms.

• Proficiency in
  PowerShell
  and
  BeanShell
  scripting for automation and integration tasks.
• Experience with access controls, identity governance, SSO, and MFA technologies.
• Knowledge of common IAM protocols and standards (e.g., LDAP, SAML, OAuth, OpenID Connect).
• Strong understanding of best practices for security and compliance within IAM ecosystems.
• Ability to architect scalable solutions that meet current and future business requirements.
• Exceptional problem-solving skills with the ability to work in a fast-paced environment.
• Strong written and verbal communication skills for collaborating with teams and documenting processes.

Apply Today

To apply online (Word attachment only), please click the 'Apply' button. Please note that only short-listed candidates will be contacted.

Reference No

By clicking 'apply', you give your express consent that Robert Half may use your personal information to process your job application and to contact you from time to time for future employment opportunities. For further information on how Robert Half processes your personal information and how to access and correct your information, please read the Robert Half privacy notice: Please do not submit any sensitive personal data to us in your resume (such as government ID numbers, ethnicity, gender, religion, marital status or trade union membership) as we do not collect your sensitive personal data at this time.

The Company

Global and reputable company.

The Role

• Lead the design, implementation, and management of Identity and Access Management (IAM) systems, ensuring robust security, scalability, and alignment with business objectives.
• Administer, install, integrate, and deploy one or more IAM solutions, such as Okta, Microsoft Entra ID (Azure AD), SailPoint, Ping/ForgeRock, Oracle, Saviynt, or equivalent platforms.
• Collaborate with cross-functional teams to integrate IAM solutions with various applications and systems, ensuring seamless functionality and user experience.
• Develop, troubleshoot, and maintain custom scripts for automation and process optimization using PowerShell and BeanShell scripting.
• Evaluate and implement tools and policies for role-based access control (RBAC), provisioning, deprovisioning, single sign-on (SSO), and multi-factor authentication (MFA).
• Monitor the performance and security of IAM systems, identifying and addressing vulnerabilities or inefficiencies proactively.
• Stay updated on industry trends in IAM technologies and frameworks to recommend and apply best practices.
• Create and document standards, procedures, and workflows related to IAM processes and technologies.
• Provide guidance and technical support to teams and act as a subject matter expert on IAM-related initiatives.

Your Profile

• Bachelor's degree in Computer Science, Engineering, or a related technical field, or equivalent work experience.

• Strong hands-on experience with one or more IAM solutions, such as Okta, Microsoft Entra ID, SailPoint, Ping/ForgeRock, Oracle, Saviynt, or similar platforms.

• Proficiency in PowerShell and BeanShell scripting for automation and integration tasks.
• Experience with access controls, identity governance, SSO, and MFA technologies.
• Knowledge of common IAM protocols and standards (e.g., LDAP, SAML, OAuth, OpenID Connect).
• Strong understanding of best practices for security and compliance within IAM ecosystems.
• Ability to architect scalable solutions that meet current and future business requirements.
• Exceptional problem-solving skills with the ability to work in a fast-paced environment.
• Strong written and verbal communication skills for collaborating with teams and documenting processes.

Apply Today

To apply online (Word attachment only), please click the 'Apply' button. Please note that only short-listed candidates will be contacted.

Reference No

By clicking 'apply', you give your express consent that Robert Half may use your personal information to process your job application and to contact you from time to time for future employment opportunities. For further information on how Robert Half processes your personal information and how to access and correct your information, please read the Robert Half privacy notice: Please do not submit any sensitive personal data to us in your resume (such as government ID numbers, ethnicity, gender, religion, marital status or trade union membership) as we do not collect your sensitive personal data at this time.

Job Duties:

• Provide expert support in AWS cloud security best practices.
• Support application security program through secure design reviews, threat modeling, and code-level security guidance.
• Conduct ongoing research on relevant CVEs impacting Customer HK systems and applications.
• Provide timely mitigation guidance, including recommended patches, configuration changes, or compensating controls.
• Test patches in lower environments (e.g., Dev and Sandbox) before deployment.

Job Requirement:

• F.5 or above
• At least 2-3 years' experience in cloud security
• AWS Cloud cert is a must

If interested in the above post, please send full resume with academic background, work history, current and expected salary via

For more job opportunity, please visit our website:

The personal information collected is strictly for recruitment purpose only.

Qube Research & Technologies (QRT) is a global quantitative and systematic investment manager, operating in all liquid asset classes across the world. We are a technology and data driven group implementing a scientific approach to investing. Combining data, research, technology, and trading expertise has shaped our collaborative mindset, which enables us to solve the most complex challenges. QRT's culture of innovation continuously drives our ambition to deliver high quality returns for our investors.

Your Role at QRT

In this role, you will be responsible for securing and optimising our AWS cloud infrastructure. You will implement critical security controls and enhancements while collaborating with stakeholders across the business from IT and operations to risk management and executive leadership to ensure alignment with our overall security objectives.

• Cloud Security Implementation:
  Assist in refining our AWS security strategy by applying industry-standard controls and continuously enhancing our cloud security posture.
• IAM & Access Management:
  Help manage and optimise Identity and Access Management (IAM) frameworks, including the application of permission boundaries to enforce least privilege access.
• Policy Enforcement:
  Support the implementation and upkeep our Service Control Policies (SCP) and Resource Control Policies (RCP) across AWS accounts to ensure the consistent application of security best practices.
• Security Services Integration:
  Deploy and manage AWS security services (e.g., GuardDuty, Security Hub, CloudTrail, Config) to monitor, detect, and respond to threats while ensuring continuous security oversight.
• Encryption & Data Protection:
  Support the integration of encryption solutions such as KMS to protect sensitive data and maintain compliance with regulatory standards.
• Security Baselining:
  Help establish and maintain security baselines for AWS environments, continuously monitoring for deviations and ensuring adherence to compliance requirements.
• Automation Frameworks:
  Contribute to the development and deploy robust automation frameworks using Infrastructure as Code (IaC) tools such as Terraform or CloudFormation, enhancing operational efficiency and supporting proactive security improvements.
• Cloud Security Operations:
  Enhance our cloud security operations by leveraging tools and methodologies across CSPM, CWNP, and ASPM frameworks to continuously monitor, detect, and respond to security issues.
• Stakeholder Management:
  Engage with a wide range of stakeholders across the business to ensure the integration and alignment of security measures across all operational areas.

Your Skillset

• Experience:
  Minimum of 3 years in cloud security, platform security, or engineering roles, including related experience in fields such as DevSecOps.
• AWS Expertise:
  Experience with AWS cloud services and a deep understanding of AWS security best practices, including expertise in IAM, permission boundaries, SCP, and RCP.
• Technical Proficiency:
  Experience implementing and optimising secure cloud architectures while leveraging AWS security services to mitigate risks and protect critical assets.
• Security Baselining:
  Demonstrable experience in establishing and maintaining security baselines to ensure consistent and compliant cloud configurations.
• Automation & IaC:
  Exposure Infrastructure as Code (IaC) tools such as Terraform or CloudFormation, with a strong focus on developing and managing stable automation frameworks.
• Python Scripting:
  Familiarity in Python scripting to support automation and security tooling.
• Cloud Security Operations:
  Familiarity in managing cloud security operations utilising tools such as CSPM, CWNP, and ASPM to maintain continuous compliance and security oversight.
• Stakeholder Engagement:
  Experience in managing stakeholder relationships and collaborate effectively across various teams to align security initiatives with broader business objectives.
• Analytical & Collaborative:
  Strong problem-solving and analytical skills, with effective verbal and written communication to thrive in a dynamic, high-paced environment.
• Learning Orientation:
  Strong desire to grow within the cloud and security space, taking initiative and seeking mentorship where needed.

QRT is an equal opportunity employer. We welcome diversity as essential to our success. QRT empowers employees to work openly and respectfully to achieve collective success. In addition to professional achievement, we are offering initiatives and programs to enable employees achieve a healthy work-life balance.

Position Summary:

We are seeking a seasoned IAM support with 8 years of experience in Identity & Access Management operations. The ideal candidate will have good hands-on expertise in user lifecycle management, access provisioning, Privileged Access Management (PAM), and access governance. Familiarity with tools such as CyberArk and HashiCorp Vault is highly desirable. This role requires a good understanding of access controls across various platforms, including Linux, Windows (Active Directory), databases, and enterprise applications.

Your Role

• Support day-to-day IAM operations including account onboarding/offboarding, access provisioning, and access reviews.
• Provide administration and operation support on PAM solutions, particularly CyberArk, and contribute to its ongoing enhancement.
• Implement and enforce access control policies across operating systems, databases, and applications.
• Support access recertification and compliance reporting activities.
• Collaborate with internal teams to ensure IAM practices align with security and business requirements.
• Participate in IAM-related projects and contribute to solution design and implementation.
• Support the maintenance of the documentation for IAM procedures, configurations, and policies.

To Succeed in the Role

• Around 8 years of experience in Identity & Access Management.
• Hands-on experience with CyberArk; familiarity with HashiCorp Vault or other IAM tools is a plus.
• Understanding of access controls for Linux, Windows (AD), databases, and enterprise applications.
• Knowledge of security frameworks and compliance standards.
• Effective communication and collaboration skills.
• Strong analytical and problem-solving abilities.
• Relevant certifications (e.g., CyberArk Defender, CISSP, CISM) are preferred.
• Candidates with more experiences will be considered as
  Senior Manager

Preferred Attributes:

• Self-motivated and able to work independently.
• Detail-oriented with a commitment to quality and security.
• Comfortable working in a dynamic, fast-paced environment.

Position Summary:

We are seeking a seasoned IAM support with 8 years of experience in Identity & Access Management operations. The ideal candidate will have good hands-on expertise in user lifecycle management, access provisioning, Privileged Access Management (PAM), and access governance. Familiarity with tools such as CyberArk and HashiCorp Vault is highly desirable. This role requires a good understanding of access controls across various platforms, including Linux, Windows (Active Directory), databases, and enterprise applications.

Your Role

• Support day-to-day IAM operations including account onboarding/offboarding, access provisioning, and access reviews.
• Provide administration and operation support on PAM solutions, particularly CyberArk, and contribute to its ongoing enhancement.
• Implement and enforce access control policies across operating systems, databases, and applications.
• Support access recertification and compliance reporting activities.
• Collaborate with internal teams to ensure IAM practices align with security and business requirements.
• Participate in IAM-related projects and contribute to solution design and implementation.
• Support the maintenance of the documentation for IAM procedures, configurations, and policies.

To Succeed in the Role

• Around 8 years of experience in Identity & Access Management.
• Hands-on experience with CyberArk; familiarity with HashiCorp Vault or other IAM tools is a plus.
• Understanding of access controls for Linux, Windows (AD), databases, and enterprise applications.
• Knowledge of security frameworks and compliance standards.
• Effective communication and collaboration skills.
• Strong analytical and problem-solving abilities.
• Relevant certifications (e.g., CyberArk Defender, CISSP, CISM) are preferred.
• Candidates with more experiences will be considered as Senior Manager

Preferred Attributes:

• Self-motivated and able to work independently.
• Detail-oriented with a commitment to quality and security.
• Comfortable working in a dynamic, fast-paced environment.

Position Summary:

We are seeking a highly experienced and detail-oriented IAM Lead with over 12 years of hands-on experience in Identity & Access Management operations. The ideal candidate will have deep expertise in account onboarding/offboarding, Privileged Access Management (PAM), access recertification — particularly with CyberArk and HashiCorp Vault, and a strong understanding of access controls across Linux, Windows (Active Directory), databases, and enterprise applications. This role requires excellent stakeholder engagement, project management capabilities, and a solid grasp of security best practices.

Your Role

• Lead and manage IAM operations including user lifecycle management (onboarding/offboarding), access provisioning, and periodic access recertification.
• Administer and enhance Privileged Access Management (PAM) solutions, with a focus on CyberArk.
• Design and enforce access control policies across Linux, Windows (AD), databases, and various enterprise applications.
• Collaborate with cross-functional teams to ensure IAM solutions align with business and security requirements.
• Drive IAM-related projects from initiation to completion, ensuring timely delivery and stakeholder satisfaction.
• Conduct regular audits and reviews to ensure compliance with internal and external security standards.
• Develop and maintain documentation for IAM processes, policies, and technical configurations.
• Provide guidance and mentorship to junior IAM team members.
• Stay current with industry trends and emerging technologies in IAM and cybersecurity.

To Succeed in the Role

• Minimum 12 years of experience in Identity & Access Management operations.
• Proven expertise in CyberArk administration and PAM best practices.
• Experience in using HashiCorp is an advantage.
• Strong understanding of access management for Linux, Windows (Active Directory), databases, and applications.
• Solid grasp of security controls, compliance frameworks, and risk management principles.
• Excellent project management and stakeholder engagement skills.
• Strong critical and logical thinking abilities.
• Exceptional written and verbal communication skills in English.
• Relevant certifications (e.g., CISSP, CISM, CyberArk Defender/Sentry) are a plus.

Preferred Attributes:

• Ability to work independently and as part of a team.
• Proactive problem solver with a strategic mindset.
• Comfortable working in a fast-paced, dynamic environment.