Staff Systems Administrator (Entra ID)
Freenome
Why join Freenome?
Freenome is a high-growth biotech company developing tests to detect cancer using a standard blood draw. To do this, Freenome uses a multiomics platform that combines tumor and non-tumor signals with machine learning to find cancer in its earliest, most-treatable stages.
Cancer is relentless. This is why Freenome is building the clinical, economic, and operational evidence to drive cancer screening and save lives. Our first screening test is for colorectal cancer (CRC) and advanced adenomas, and it’s just the beginning.
Founded in 2014, Freenome has ~500 employees and continues to grow to match the scope of our ambitions to provide access to better screening and earlier cancer detection.
At Freenome, we aim to impact patients by empowering everyone to prevent, detect, and treat their disease. This, together with our high-performing culture of respect and cross-collaboration, is what motivates us to make every day count.
Become a Freenomer
Do you have what it takes to be a Freenomer? A “Freenomer” is a determined, mission-driven, results-oriented employee fueled by the opportunity to change the landscape of cancer and make a positive impact on patients’ lives. Freenomers bring their diverse experience, expertise, and personal perspective to solve problems and push to achieve what’s possible, one breakthrough at a time.
About this opportunity:
We are seeking a seasoned Enterprise Identity and Access Management (Entra ID) Architect to join our IT team. This position is responsible for designing, managing, and implementing highly complex Identity and Access Management infrastructure across the enterprise. The ideal candidate will have extensive experience with Microsoft AD architecture, SSO integrations, security best practices, and cross-platform integration. This role demands someone who can work collaboratively with other IT/engineering professionals to ensure robust, secure, and efficient directory services.
This position reports to Senior Manager, IT Infrastructure.
What you’ll do:
Execution Excellence:
- Design and implement Identity Management architecture solutions that meet business requirements and integrate with existing system infrastructures
- Design and execute the migration plan for existing Identity Management solution to Entra ID
- Develop and implement strategies for deploying Entra ID in multi cloud environment (Azure and GCP)
- Ensure security best practices are in place for Entra ID including the implementation of Group Policies, Secure LDAP, device configurations and other security and compliance
- measures
- Manage SAML and OAuth integrations for single sign-on (SSO) capabilities across multiple platforms
- Perform routine audits of systems and software, applying patches and updates as required
- Provide expert guidance and leadership on DNS, DHCP, FSMO roles, and other core network services associated with AD infrastructure
- Document the configuration and maintenance procedures related to Entra ID and associated services
- Work with cybersecurity teams to monitor security protocols and act on incident response related to Identity Access Platform
- Provide training and support to other IT staff on Entra ID management and troubleshooting
- Enforce the principle of least privilege to ensure users have the minimum level of access necessary to perform their job functions
- Implement policies that adapt based on user behavior and risk levels
- Use advanced monitoring and detection techniques to identify and respond to compromised identities
- Create policies that target groups of applications based on their sensitivity, requiring MFA, device compliance, and other security measures
- Regularly review and adjust permissions to minimize the risk of over-privileged accounts
- Streamline the management of identities throughout their lifecycle, from creation to deactivation
- Stay current with emerging technologies and advancements in Entra ID services
Communication and Collaboration:
- Proactively requests feedback from others and are open to continuous feedback
- Consistently delivers actionable and timely feedback to people at all levels in a way that strengthens relationships and enables functional initiatives to advance more quickly
- Provide consistent communications to key functional and cross-functional stakeholders on progress and updates
- Build and maintain strong, healthy relationships with cross-functional peers
Must haves:
- Bachelor’s degree in Information Technology, Computer Science, or a related field. Master’s degree preferred
- Microsoft certifications such as Azure Administrator Associate or other relevant Microsoft certifications
- Minimum of 7 years experience in Active Directory architecture and management, including hands-on experience with enterprise-scale implementations
- Strong understanding of network protocols, LDAP, directory services, federation technologies, and identity management solutions
- Identity and Access Management (IAM): Deep understanding of IAM principles, including authentication, authorization, and identity governance
- Azure Active Directory (Azure AD): Proficiency in configuring and managing Azure AD
- Strong understanding of security protocols and best practices, including Zero Trust principles
- Excellent skills in designing scalable architectures and optimizing performance for identity management systems
- Familiarity with KQL for querying and analyzing data within Azure
- PowerShell and Scripting: Ability to automate tasks and manage environments using PowerShell and other scripting languages
- Experience in implementing and managing hybrid identity solutions that integrate on-premise and cloud environments
- Experience in implementing attribute-based conditional access policies
- Proven experience with Entra ID and Office 365 management and integration
- Strong analytical and problem-solving skills, with a track record of handling high-pressure situations
- Excellent organizational skills and attention to detail
- Strong interpersonal and communication skills with the ability to interact effectively with all levels of the organization
Nice to haves:
- Azure Solutions Architect Certification
- Experience in biotechnology, bioinformatics, regulated software, or similar field
- Experience in a startup environment
- Experience leading teams in a highly regulated environment
- Experience leading teams developing infrastructure as part of a Medical Device
- Exposure to big data, especially biological and clinical data
Benefits and additional information:
The US target range of our base salary rate for new hires is $157,675 - $242,000. You will also be eligible to receive pre-IPO equity, cash bonuses, and a full range of medical, financial, and other benefits depending on the position offered. Please note that individual total compensation for this position will be determined at the Company’s sole discretion and may vary based on several factors, including but not limited to, location, skill level, years and depth of relevant experience, and education. We invite you to check out our career page @ freenome.com/job-openings/ for additional company information.
Freenome is proud to be an equal-opportunity employer, and we value diversity. Freenome does not discriminate on the basis of race, color, religion, marital status, age, national origin, ancestry, physical or mental disability, medical condition, pregnancy, genetic information, gender, sexual orientation, gender identity or expression, veteran status, or any other status protected under federal, state, or local law.
Applicants have rights under Federal Employment Laws.
- Family & Medical Leave Act (FMLA)
- Equal Employment Opportunity (EEO)
- Employee Polygraph Protection Act (EPPA)
#LI-Remote