Microsoft SSPR Expert (ZISPL Job No 669)

Design and architect enterprise SSPR solutions for multi-forest, multi-region hybrid Active Directory environments supporting 10,000+ users

·Develop comprehensive identity authentication roadmaps integrating SSPR with passwordless strategies, MFA, and zero-trust frameworks

·Create technical architecture documentation including data flows, security controls, disaster recovery procedures, and compliance mappings

·Lead architectural review boards for identity-related changes, ensuring SSPR integration with broader IAM initiatives

·Design group-based targeting strategies for phased SSPR rollouts balancing security requirements with user experience

·Architect SSPR monitoring, alerting, and reporting frameworks using Azure Monitor, Log Analytics, and Power BI

Implementation & Engineering 

·Configure and deploy Azure AD SSPR policies including authentication methods, registration enforcement, and writeback capabilities

·Implement Azure AD Connect password writeback across multiple forests with high-availability and disaster recovery configurations

·Integrate SSPR with Azure AD Password Protection, banned password lists, and custom policy enforcement

·Configure Conditional Access policies for secure SSPR registration, including risk-based authentication and MFA enforcement

·Develop PowerShell scripts and Microsoft Graph API integrations for automated SSPR configuration management and reporting

Design and architect enterprise SSPR solutions for multi-forest, multi-region hybrid Active Directory environments supporting 10,000+ users

·Develop comprehensive identity authentication roadmaps integrating SSPR with passwordless strategies, MFA, and zero-trust frameworks

·Create technical architecture documentation including data flows, security controls, disaster recovery procedures, and compliance mappings

·Lead architectural review boards for identity-related changes, ensuring SSPR integration with broader IAM initiatives

·Design group-based targeting strategies for phased SSPR rollouts balancing security requirements with user experience

·Architect SSPR monitoring, alerting, and reporting frameworks using Azure Monitor, Log Analytics, and Power BI

Implementation & Engineering 

·Configure and deploy Azure AD SSPR policies including authentication methods, registration enforcement, and writeback capabilities

·Implement Azure AD Connect password writeback across multiple forests with high-availability and disaster recovery configurations

·Integrate SSPR with Azure AD Password Protection, banned password lists, and custom policy enforcement

·Configure Conditional Access policies for secure SSPR registration, including risk-based authentication and MFA enforcement

·Develop PowerShell scripts and Microsoft Graph API integrations for automated SSPR configuration management and reporting