At Shire, we are proud and grateful to employ military veterans and thank them for their contributions to our company and our country. See where your military experience can play a role at Shire by using our military skills translator job search tool below:
Hybrid - 1x/week in midtown New York City - ONLY CONSIDERING CANDIDATES WHO ARE LOCAL TO NYC/NJ/CT/PA
Contract to Hire
W2 ONLY - No 3rd Parties candidates
*This is not a DevOps role
Description:
Our healthcare client is looking for a Senior Active Directory Engineer/ Entra ID Engineer to be part of the IAM team, who can bring strong Lead technical knowledge in the identity, certificate, and security space, along with the capacity to collaborate effectively with diverse teams and personalities and be a great team player to achieve organizational goals. They will expect this person to contribute at a high level, create direction and be a leader that can run on their own, not waiting for instruction.
Technically will provides support, implementation, and design services for Microsoft Active Directory, AAD, and Windows-based systems across the enterprise, including directory and identity management solutions. Resolves and appropriately completes assigned cases and change requests and acts as an escalation for support issues. Applies new solutions through research and collaboration with the team and determines the course of action for new application initiatives. Implements new software solutions as required by the business. The core infrastructure technology duties include enterprise Microsoft Active Directory, AAD, M365, Certificate Authority and Windows file services architecture creation and management, enterprise-wide system security and policy configuration, and top-level support for enterprise-wide initiatives. Our client is looking for a
The critical value of this position is the candidate’s ability to bring strong technical knowledge in the identity, certificate, and security space, along with the capacity to collaborate effectively with diverse teams and personalities and be a great team player to achieve organizational goals.
MUST HAVE:
5-8+ years experience working with Microsoft Identity technologies including Active Directory, Azure ADConnect, Azure Active Directory, SSO, Azure App. etc.
Expert knowledge in administering Active Directory (AD), GPO, On-prem Active Directory forest recovery process, Azure ADConnect and identity management, Azure AD DS, M365 platform, Single Sign on (SSO), Federation, Certificate Authority (PKI), PowerShell with a good understating of DNS, Azure DNS services.
B.S. degree in a computer science, information technology, computer related discipline. May consider candidates with Associates degree
Must come from a large enterprise environment (10,000+ users)
These Engineers will be responsible for:
Produce enterprise-level designs for Active Directory, Azure Active Directory/Entra ID, SaaS application integration, Azure App., and SSO for enterprise initiatives, following those through to implementation via collaboration with project and support teams.
Produce Enterprise-level plan for security hardening.
Design, implement, and manage Azure infrastructure components, such as virtual networks, subnets, network security groups (NSGs), and Azure Resource Manager (ARM) templates.
Monitor and maintain Azure security and compliance, including configuring Azure Security Center, implementing role-based access control (RBAC), and managing security alerts and threat detection.
Perform regular audits and assessments of Azure resources and configurations to ensure compliance with security best practices and regulatory requirements.
Update Enterprise-level plan for recovery of Active Directory in the event of a disaster or system compromise.
Work closely with internal teams to implement Group Policy Objects (GPOs), and performance tuning as it relates to the latest Windows Desktop and Server Migration project(s).
Identify opportunities to innovate, extend and enhance service delivery everywhere possible.
Own Root Cause Analysis and Problem Management for Active Directory environment.
Serves as escalation point for application support and troubleshooting, provides guidance and direction in resolution of escalated issues and/or complex production, application or system problems.
Serves as the first line of escalation support for domain technology issues that cannot be resolved by help desk analysts.
Perform daily system monitoring, verifying the integrity and availability of all hardware, server resources, systems and key processes, reviewing system and application logs, and verifying scheduled job completion.
Install, configure, and maintain Active Directory, PKI (Microsoft Certificate Authority) and third-party software utilities for hardware systems within company operational guidelines.
Venafi, Rapid7 experience is a plus.
Develops, documents, and enforces the standards, security procedures, and controls for access to ensure integrity of the Windows Systems, Active Directory, Azure ADConnect and related systems.
Create and maintain system documentation for domain technologies, including installation, configuration, and appropriate troubleshooting steps.
Improve existing processes through solutions to recurring problems and enhancements to existing solutions or documentation.
Manage customer satisfaction through effectively communicating and managing customer expectations
Stay up to date with the latest Azure and Microsoft security technologies, trends, and best practices to proactively identify and mitigate potential security risks
About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.