EntraID B2C JD
Scope of Work
1. External Identity Platform Delivery (Primary Focus)
- Design and implement Entra ID B2C / External ID solutions:
- User journeys, authentication flows, and policies
- Build and configure:
- MFA, federated identity, and authentication mechanisms
- Develop custom policies using:
- Identity Experience Framework (IEF)
2. Integration & Identity Federation
- Build integrations with:
- SailPoint IIQ (identity governance)
- Enterprise applications and external APIs
- Implement:
- Federation with external identity providers (SAML, OIDC, OAuth2)
- Develop secure identity integrations using:
- REST APIs and token-based authentication
3. External Identity Lifecycle Enablement
- Enable:
- Customer / partner onboarding flows
- Identity lifecycle integration with enterprise IAM
- Support design of:
- Identity governance model for external users
4. Design & Delivery Artefacts
- Produce:
- Technical designs (HLD/LLD)
- Configuration and integration documentation
- Support:
- UAT readiness (demos, test support, defect clarification)
- Deployment readiness and handover
5. L3 Support (Targeted - Defined Scope)
The contractor will provide controlled L3 support for:
In Scope
- Troubleshooting of:
- Authentication failures
- Identity flow issues (B2C policies, federation errors)
- Resolution of:
- Production defects related to delivered features
- Root cause analysis for:
- External identity incidents impacting business users
- 3 support is provided during:
- Standard business hours (unless otherwise agreed)
- Major incident support:
- Best-effort response within agreed SLA
Explicit Constraints (Important for cost control)
- Support is:
- Limited to B2C platform and delivered features only
- Time-bound and effort-capped (e.g., X hours/month if in SOW)
- Does NOT include:
- L1/L2 support or service desk tickets
- General BAU platform ownership
- 24/7 operational support
Required Experience
- 4-8+ years IAM / CIAM experience
- Strong hands-on experience with:
- Microsoft Entra ID / Azure AD
- Azure AD B2C / Entra External ID
- Deep expertise in:
- OAuth2, OpenID Connect, SAML
- Proven experience with:
- Custom policies (IEF / Trust Framework)
- Strong integration experience:
- REST APIs, token handling, identity federation
Preferred Experience
- Integration with IAM platforms (e.g., SailPoint)
- Experience in regulated environments (SOX / GxP)
- Experience with:
- Azure Functions, Logic Apps, API Management
- Prior experience implementing:
- Customer / partner identity platforms at scale
Key Deliverables
- Fully implemented external identity platform (B2C/B2B)
- Secure and scalable authentication flows (incl. MFA, federation)
- Integrated identity lifecycle between B2C and enterprise IAM
- Production-ready B2C policies and identity flows
- Documented and supportable solution design
Success Criteria
- Delivery of identity features aligned to release timelines
- Stable and secure authentication experience for external users
- Minimal production defects post go-live
- Timely resolution of critical B2C issues via L3 support
- Complete documentation enabling future internal ownership
microsoft entra id,customer identity and access management,l3 support,azure platform,
