Active Directory and Azure Engineer

Active Directory and Azure Engineer

Charlotte, NC - On site

Skills: Active Directory, Azure, IAM, Azure AD B2B.

Job Summary

Job Description

• Serve as a subject matter expert for Directory Services (AD / AAD) under the IAM services portfolio

• Perform in the capacity of AD / AAD Engineer

• Understand how the service works from a business/end-user/technical perspective.

• Have command of the service, including its capabilities and proper use

• Execute proof-of-concepts guided by the Service Manager and Director

• Complete assigned projects/tasks in a timely manner

• Interact with key stakeholders and project/program teams to understand their requirements and architect solutions based on best practices

• Ensure proper oversight for quality assurance of IAM artifacts

• Architect, own, and maintain processes, metrics, and procedures

• Enforce adherence to architectural standards/principles

• Proactively provide feedback regarding infrastructure IAM engineering methodologies, standards, and leading projects

• Minimize technical exposure and risk on projects

• Delivers and manages a highly available, stable, and secure Directory Services environment

• Drive value realization for the services and technology within the cybersecurity controls organization

• Participates in the testing (e.g., planning and execution) related to performance, disaster recovery, and business continuity for AD and AAD

• Work with Solution Architect and onboard new technologies which can enhance the security of Active Directory and Azure Active Directory.

• Design & implement new solutions like Windows Hello for Business, MFA, Conditional Access, TAP, Entra Lifecycle management, Secure Service Edge, Authentication strengths and Application management.

• Understanding of Design & Implementation of Microsoft Defender for Identity (MDI) on all the Domain Controllers. Integrating it with Syslog server and generating the security events

• Understanding of design and implemented Conditional Access policy which enhances the security of Identity, device & Cloud applications as part of the Zero trust methodology.

• Understanding of design and Implemented Quest-On Demand Recovery, RMAD, and Forest recovery for end-to-end disaster recovery of Active Directory and Azure AD.

• Design and Implement Azure AD B2B.

• Design and Implemented Multifactor solutions

• Understanding of ADFS

• Managing day-to-day Changes, Escalations, and Incidents related to the internal AD & AAD infrastructure.

• Configuring and Managing Active Directory infrastructure on Windows Server.

• Good knowledge on PowerShell for Active directory/Azure AD.

• Administration of the complete ADUC structure and make changes to the design

• Active Directory Objects via Active Directory Users and Computers. Components Restriction, Folder Redirections, Software Deployment. Administrative Templates, Windows Settings, Group Policies.

• Working on Azure AD and Azure AD Connect.

• Collaborate with global team members based in the US, India, and EMEA.