Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Alisha Wajed Khan

Pune

Summary

Experienced Azure Identity & Access Management Engineer with 10 years in IT, specializing in Microsoft Entra ID, Privileged Identity Management, and Conditional Access. Delivered secure access solutions for large user bases and critical applications in enterprise settings. Expertise in hybrid identity, federation, SSO integrations, and compliance auditing in Azure, along with skills in automation and logging to strengthen identity governance.

Overview

11
11
years of professional experience
4
4
Certifications

Work History

Consultant

Allstate
Pune
03.2022 - 01.2026
  • Worked as an IAM consultant supporting identity services for applications and internal platforms.
  • Designed, implemented, and administered Microsoft Entra ID (Azure AD) for employees, vendors, partners, and service identities.
  • Led implementation and operational management of Privileged Identity Management (PIM) for Azure and Entra ID roles, enforcing just-in-time access, approval workflows, access expiry, and audit trails.
  • Designed and enforced Conditional Access policies for MFA, device compliance, trusted locations, sign-in risk, and blocking legacy authentication to enhance security posture.
  • Integrated and managed enterprise applications using SAML 2.0, OAuth 2.0, and OpenID Connect, including claims mapping and token configuration (JWT/SAML).
  • Supported Identity Governance initiatives such as:
  • Conducted access reviews to evaluate user permissions and ensure compliance with security policies.
  • Entitlement validation
  • Periodic role and privilege recertification
  • Managed RBAC assignments across Azure subscriptions and resource groups following least-privilege and zero-trust principles.
  • Supported hybrid identity environments, including:
  • Azure AD Connect (Sync & PTA)
  • Directory synchronization health checks
  • Attribute and identity mismatch resolution
  • Utilized Azure Key Vault for secure management of certificates, secrets, and application credentials used in IAM workflows.
  • Automated IAM operations with PowerShell, Azure Automation, and Azure Logic Apps to streamline user lifecycle management, access cleanup, and reporting processes.
  • Supported audit, compliance, and security assessments by analyzing Azure AD sign-in logs, audit logs, and Log Analytics to ensure adherence to security policies.
  • Contributed to IAM design documentation, operational procedures, and security baselines.
  • Collaborated with security, cloud, DevOps, and application teams on IAM architecture, onboarding, and access control decisions.

Associate

WNS
Pune
05.2020 - 03.2022
  • Executed user lifecycle management (JML) for provisioning, de-provisioning, access modifications, and role changes to ensure seamless user access.
  • Administered Azure AD users, groups, directory roles, and enterprise applications.
  • Supported MFA enrolment, Conditional Access enforcement, and authentication issue resolution.
  • Assisted with SSO integrations using SAML and OAuth-based authentication.
  • Troubleshot authentication failures using Azure AD sign-in logs, audit logs, and token error analysis.
  • Supported RBAC access requests and privilege assignment reviews.
  • Participated in access reviews, entitlement validation, and audit support activities.
  • Provided IAM operational and L2/L3 support across multiple client environments in a service-based delivery model.
  • Maintained IAM SOPs, operational runbooks, and client documentation.
  • Coordinated with security and infrastructure teams to resolve identity-related incidents and service requests, enhancing operational response times.

IAM Specialist

FSP Tech
Pune
11.2019 - 04.2020
  • Facilitated security and access management for clients using Azure and hybrid identity environments.
  • Administered Azure AD users, groups, roles, and enterprise applications.
  • Supported privileged access requests and Azure role assignments.
  • Supported SSO integrations using SAML 2.0 and OpenID Connect, including configuration and issue resolution.
  • Assisted in Conditional Access policy creation, MFA rollout, and access enforcement.
  • Assisted with Azure AD Connect monitoring, synchronization health checks, and issue resolution.
  • Contributed to IAM audit preparation, access validation, and compliance reporting, ensuring alignment with regulatory requirements.
  • Collaborated with senior IAM engineers on identity configuration standards and best practices.

Senior Engineer

Relambda
Pune
01.2015 - 11.2019
  • Administered Active Directory environments including user accounts, security groups, role-based access, and OU-level delegation.
  • Troubleshot authentication and access control issues, resolving login failures, permission conflicts, and group-based access problems.
  • Supported federation and SSO activities, contributing to ADFS-based authentication and resolving SSO issues.
  • Supported on-premises identity infrastructure and participated in early hybrid identity integration efforts.
  • Executed user lifecycle activities (joiner, mover, leaver) to ensure compliance with organizational access policies.
  • Assisted with directory synchronization activities, attribute validation, and access changes during migrations.
  • Conducted access audits and validated user access to ensure compliance.
  • Supported Microsoft enterprise environments from an identity and authentication perspective.
  • Worked closely with infrastructure, security, and application teams to resolve identity-related issues.
  • Maintained technical documentation, SOPs, and knowledge base articles.
  • Built strong foundational knowledge in identity governance, authentication protocols, and enterprise IAM, forming the base for later Azure IAM specialization.
  • Assisted in establishing enterprise identity and access requirements to ensure user compliance.
  • Developed and used basic PowerShell scripts for administrative and user management tasks.

Education

Bachelor of Arts -

Savitribai Phule Pune University
Pune
04-2017

Skills

  • Microsoft Entra ID and Azure AD
  • Privileged identity management
  • Conditional access
  • Identity governance
  • RBAC and least privilege model
  • Joiner-mover-leaver (JML)
  • SAML 20
  • OAuth 20
  • OpenID Connect
  • JWT tokens
  • Single sign-on (SSO)
  • Azure AD enterprise applications
  • Federation concepts
  • Active Directory management
  • Azure AD Connect and cloud sync
  • Hybrid identity architecture
  • Azure Key Vault management
  • Azure automation and logic apps
  • PowerShell scripting
  • Microsoft Graph API
  • Log analytics and Azure AD logs
  • MFA and risk-based access control
  • Zero trust principles
  • Audit and compliance support
  • CI/CD

Certification

AZ-900

Timeline

Consultant

Allstate
03.2022 - 01.2026

Associate

WNS
05.2020 - 03.2022

IAM Specialist

FSP Tech
11.2019 - 04.2020

Senior Engineer

Relambda
01.2015 - 11.2019

Bachelor of Arts -

Savitribai Phule Pune University

Similar Profiles

CREATE PROFILE
Alisha Wajed Khan