Microsoft Entra ID (Azure AD), Active Directory

Muralikrishna G

Azure IAM Active Directory Engineer

+91-953**-***** ******@*****.*** linkedin.com/in/murali-krishna-5a4500222 Bangalore, India PROFESSIONAL SUMMARY

Cloud Identity Engineer with 4 years of IT experience specializing in Microsoft Entra ID (Azure Active Directory), Active Directory, and enterprise Identity & Access Management (IAM). Hands-on expertise in Privileged Identity Management (PIM), Conditional Access, RBAC, MFA, and Hybrid Identity solutions, gained across high-compliance BFSI environments at LTIMindtree and JPMorgan Chase. Proficient in automating identity workflows using PowerShell and Azure CLI, with strong experience in ServiceNow ITSM processes. Adept at enforcing Zero Trust principles and least-privilege access governance across large-scale enterprise environments. Microsoft AZ-900 certified with SC-300 in progress, bringing a solid foundation in cloud identity security and governance; Immediate joiner.

SKILLS & CORE COMPETENCIES

Cloud Identity & IAM: Microsoft Entra ID (Azure AD), Privileged Identity Management (PIM), Conditional Access Policies, RBAC, ABAC, Multi-Factor Authentication (MFA), Identity Lifecycle Management, Identity Governance, Access Reviews, App Registrations, Service Principals, Dynamic Groups, SSPR. On-Premises Identity: Active Directory (AD DS), Group Policy Objects (GPO), Organizational Units (OU), Domain Services, Security Groups, LDAP, Kerberos.

Hybrid Identity: Azure AD Connect, Password Hash Sync (PHS), Pass-Through Authentication (PTA), Seamless SSO, Hybrid Azure AD Join.

Security & Compliance: Zero Trust Framework, Least Privilege, Access Recertification, Audit Reporting, Entra ID Protection, Risk-Based Conditional Access, ITIL.

Protocols & Standards: SAML 2.0, OAuth 2.0, OpenID Connect (OIDC), Single Sign-On (SSO), LDAP, Kerberos. Scripting & Automation: PowerShell (Az, AzureAD, ActiveDirectory Modules), Azure CLI, Bash, Python (Basic). DevOps & CI/CD: Azure DevOps (Pipelines, Repos, Boards, Artifacts), YAML Pipelines, CI/CD Pipeline Design, Blue/Green & Rolling Deployments.

Infrastructure as Code: Terraform (Resource Provisioning, Remote State, Backend Bootstrap), IaC Best Practices. Containers & Orchestration: Docker (Image Build, Tagging, Registry Push), Kubernetes (AKS, Manifests, Deployments, Services, Ingress) basics, Azure Container Registry (ACR). Monitoring: Azure Monitor, Application Insights, Sign-in logs, Audit Logs. Tools & Platforms: ServiceNow (Incident, Request, Change, Problem), Azure Portal, Microsoft 365 Admin Center, Entra Admin Center.

PROFESSIONAL EXPERIENCE

Active Directory & Identity Engineer

JPMorgan Chase & Co. via Russell Tobin — Bangalore, India Jun 2024 – Dec 2025

• Engineered and maintained enterprise-scale Active Directory (AD DS) infrastructure — including user accounts, Organizational Units (OUs), domain trust relationships, and Group Policy Objects — serving thousands of users in a high-compliance BFSI environment.

• Designed and enforced Group Policy (GPO) configurations covering security baselines, password policies, software deployment, and endpoint compliance across all domain-joined systems.

• Owned end-to-end identity lifecycle management — user onboarding, role transitions, access modifications, and secure offboarding — in strict compliance with JPMorgan's internal security frameworks.

• Diagnosed and resolved complex Azure AD Connect synchronization issues, ensuring consistent hybrid identity state between on-premises Active Directory and Microsoft Entra ID.

• Governed privileged AD accounts, security groups, and distribution lists, enforcing least-privilege access principles and maintaining clean group membership hygiene across the enterprise domain.

• Managed identity incidents, service requests, and change records via ServiceNow, maintaining detailed audit trails and adhering to ITIL-based change management procedures. Azure IAM & Cloud Identity Engineer

LTIMindtree Full-Time Employee — Bangalore, India Dec 2021 – May 2024

• Served as Subject Matter Expert (SME) on Microsoft Azure, focusing on Azure IAM and Automation.

• Administered Microsoft Entra ID (Azure Active Directory) across multiple enterprise client tenants, managing user provisioning, deprovisioning, attribute updates, and full identity lifecycle operations.

• Configured and maintained Conditional Access Policies implementing Zero Trust access controls — enforcing access restrictions based on user risk, device compliance, network location, and application sensitivity.

• Managed Privileged Identity Management (PIM) including Just-In-Time (JIT) role activations, approval workflows, activation duration policies, and regular privileged access reviews for Azure AD roles.

• Implemented Role-Based Access Control (RBAC) at subscription, resource group, and resource levels, enforcing least-privilege governance and supporting cloud security audits.

• Configured Multi-Factor Authentication (MFA) policies — including per-user MFA, Security Defaults, and Conditional Access-based MFA — across diverse enterprise user populations.

• Created and managed Azure AD static and dynamic groups, enterprise application assignments, app registrations, and service principal configurations for SaaS and internal application integrations.

• Enabled Single Sign-On (SSO) for enterprise applications using SAML 2.0 and OAuth 2.0/OIDC through Azure AD Enterprise Applications, improving user experience and access security.

• Handled identity incidents, change requests, and service tasks via ServiceNow, consistently meeting SLA targets and contributing to team knowledge base documentation.

• Conducted periodic access reviews and generated compliance reports supporting internal audits, client security reviews, and regulatory governance requirements.

PROJECTS

Azure DevOps CI/CD with Terraform & Azure Functions Murali-Hub1/Project-demo2 Feb 2026

• Provisioned Azure infrastructure (Resource Group, VNet, Storage Account, Function App, App Service Plan, Key Vault) using Terraform with remote state in Azure Storage, following IaC best practices.

• Built CI/CD pipelines using Azure DevOps YAML with unit tests and code analysis, automating deployments to Azure Functions with environment configuration via PowerShell and Bash scripts.

• Implemented a bootstrap Terraform backend using Azure Storage and Key Vault for secret management; managed service principals and RBAC permissions for secure pipeline execution.

• Troubleshot pipeline failures, Terraform state locking, RBAC/Key Vault access issues, and resource dependency errors to stabilize end-to-end deployments.

Cloud-Native CI/CD with GitHub Actions, Docker & AKS Murali-Hub1/DevOps-project-demo1 Jan 2026

• Configured CI/CD pipelines using Azure DevOps and GitHub Actions for containerized deployments from ACR to AKS, supporting blue/green and rolling deployment strategies.

• Automated Docker image build, tagging, and push to Azure Container Registry (ACR) using YAML pipelines with a defined versioning strategy.

• Authored Kubernetes manifests (Deployment, Service, Ingress) for scalable workloads and service exposure via Azure Load Balancer on AKS.

• Configured self-hosted Azure DevOps agents with Docker to ensure consistent build environments; debugged using kubectl logs, describe, rollout, and port-forward.

• Monitored containerized workloads using Prometheus and Grafana dashboards, enabling real-time visibility into cluster health and application performance.

CERTIFICATIONS

• Microsoft Certified: Azure Fundamentals (AZ-900) — Microsoft, 2023

• SC-300: Microsoft Identity & Access Administrator — Microsoft, In Progress EDUCATION

B.Tech — Computer Science 2017–2021

Gandhi Institute of Technology Management (GITAM) University, Bangalore, India

Contact this candidate