External Identity Architect at Kocho

About Kocho

Kocho recognise that technology on its own does not deliver change and offers technology adoption services alongside excellent technical consulting to enable our clients to achieve their business goals on their journey to Become Greater.

Our head office is in the heart of London’s West End and provides a comfortable working environment with flexible collaboration spaces that encourage our people to Become Greater with the aim to Do What’s Right. In 2022 we be opened new offices in Cardiff and Cape Town which follow the style of our London space. Kocho is an equal opportunities employer. We make recruitment decisions based on qualifications, skill set and experiences. We consider all suitable candidates regardless of their age, sex, gender reassignment, race, religious beliefs, or lack thereof, marital status, disability or sexual orientation or any other protected characteristic. This is mindset aligns with our company values as we understand that we are Better Together.

Job Purpose

We are seeking a highly skilled External Identity Architect specializing in Microsoft Entra External ID to design and implement scalable identity solutions for external users. The ideal candidate will have hands-on experience with B2C identity scenarios and full-stack development, enabling seamless integration of identity and access management across web and mobile applications. 

Key Responsibilities: 

• Design, implement, and maintain Entra External ID (Azure AD B2C) solutions for external-facing applications. 

• Collaborate with development teams to integrate authentication and authorization flows across full-stack applications. 

• Develop custom policies, user journeys, and secure identity workflows tailored to business requirements. 

• Provide guidance on best practices for identity management, authentication, and authorization. 

• Lead architecture reviews, ensuring scalability, security, and compliance with industry standards. 

• Mentor and support teams on identity strategy, integration, and troubleshooting complex scenarios. 

Qualifications & Skills: 

• Extensive experience with Microsoft Entra External ID / Azure AD B2C. 

• Strong full-stack development skills (front-end + back-end integration). 

• Proven track record designing and implementing external identity solutions for enterprise applications. 

• Knowledge of OAuth2, OpenID Connect, SAML, and other modern authentication protocols. 

• Experience with API security, custom policies, and advanced user journey configuration. 

• Excellent problem-solving, communication, and stakeholder management skills. 

Desirable: 

• Prior experience in large-scale consumer or partner identity deployments. 

• Familiarity with CI/CD pipelines, DevOps practices, and cloud-native architecture. 

• Security certifications (e.g., Microsoft Certified: Identity and Access Administrator Associate).