Microsoft Identity and Access Management Engineer

Build a career powered by innovations that matter! At Novanta , our innovations power technology products that are transforming healthcare and advanced manufacturing—improving productivity, enhancing people’s lives and redefining what’s possible.

We create for our global customers engineered components and sub-systems that deliver extreme precision and performance for a range of mission-critical applications—from minimally invasive surgery to robotics to 3D metal printing.

Novanta is one global team with over 26 offices located in The Americas, Europe and Asia-Pacific.

Looking for a great place to work? You have found it with a culture that embraces teamwork, collaboration and empowerment.

Come explore Novanta .

Position Overview Novanta is seeking a skilled Microsoft Identity and Access Management (IAM) Engineer to join our Information Technology team.

This mid-level role is responsible for designing, implementing, and maintaining identity and access management solutions across the organization’s Microsoft ecosystem.

The ideal candidate brings 3–5 years of hands-on experience with Microsoft IAM technologies, a strong security mindset, and a passion for enabling secure, seamless access across a modern enterprise environment.

Position Details: Job Title: Microsoft Identity and Access Management Engineer Department: Information Technology Location: United States (Remote) Employment Type: Full-Time Experience Level: Mid-Level (3–5 years) Reports To: VP of IT Key Responsibilities: Design, implement, and maintain Microsoft Azure Active Directory (Azure AD / Entra ID) environments in hybrid and cloud-native configurations.

Manage user lifecycle processes including provisioning, de-provisioning, and role-based access control (RBAC) assignments.

Configure and maintain Conditional Access policies, Multi-Factor Authentication (MFA), and Single Sign-On (SSO) solutions.

Administer Microsoft Privileged Identity Management (PIM) and Privileged Access Management (PAM) solutions to enforce least-privilege principles.

Integrate SaaS applications and on-premises systems with Azure AD using SAML, OAuth 2.0, and OpenID Connect protocols.

Monitor identity infrastructure for threats, anomalies, and compliance gaps using Microsoft Defender for Identity and Microsoft Sentinel.