Active Directory and Entra ID Engineer

Key Responsibilities:

• Manage and Maintain Active Directory and Microsoft Entra ID.
• Identity provisioning, governance, SSO, MFA, and Conditional Access Policies.
• Manage Risky User / Risky Sign in.
• Enterprise Application provisioning - SSO.
• Single Sign-On technologies such as Okta, Ping, DUO.
• Additional responsibilities as assigned.

Qualifications, Requirements & Preferred Skills

• In this role you will support and help build the Entra ID strategy and roadmaps, considering the corporate strategy, industry security trends, and applicable regulatory requirements.
• Enhance the security of our corporate environment by developing processes and implementing technology around user identity and access management.
• Be a subject matter expert for identity provisioning, governance, SSO, MFA, and Conditional Access Policies.
• Analyze, design, and support a highly complex, enterprise level Active Directory in a hybrid on-premise and cloud-hosted environment.
• Implement, execute, and support critical IAM processes, including overall identity management, access management, provisioning/de-provisioning, user onboarding/offboarding, SSO, MFA, & CAP.
• Manage and troubleshoot all aspects of Active Directory and Entra ID (Azure AD).
• Must have hands-on experience delivering Azure Single Sign-On integrations, helping to manage and maintain AD, GPO, ADSS, ADCS, DNS, DHCP, Entra ID, AAD Connect, RBAC, Intune, Azure App Proxy, Conditional Access and Microsoft Security Stack.
• Create and maintain system documentation for domain technologies, including installation, configuration, and appropriate troubleshooting steps.
• Proactively identify potential threats, exploit attempts, and other security events related to Directory Services and IAM & make recommendations and/or take action to mitigate identified issues as appropriate.
• Actively contribute to and participate in security incident response as needed.
• Work with internal Security teams to remediate critical security findings as they relate to identity.
• Work with internal stakeholders to implement appropriate role-based access controls for access within the organization.
• Provide ongoing operational support to ensure day-to-day operations are running smoothly.
• Identify and implement opportunities for technology, automation, and security enhancements for IAM functions.
• PowerShell - Create, modify, execute.
• Participate in constant process improvements
• Mentor / Cross train.
• Collaborate and work across globally diverse teams and different time zones.
• Excellent analytical, organization, and problem-solving skills.
• Demonstrated strong written and oral communication skills, including strong relationship building skills and leadership capabilities.
• Ability to form relationships across all levels of the company while modeling the company Culture and Values.
• Ability to apply general rules to specific problems to produce conclusions and responses.
• Strong analytical and problem-solving skills with high attention to detail.
• Ability to apply general rules to specific problems to produce conclusions and responses.
• Ability to communicate effectively, both verbal and written.

Core Values & Competencies

• 3+ years previous work experience with Entra ID (Azure AD), Active Directory, AWS, Conditional Access Policy management, MFA, SSO.
• Previous success with Identity and Access Management and Governance processes and projects.
• B.S. degree in a computer science, information technology, computer related discipline or 4 years IT work experience in a global information technology infrastructure environment.
• Self-motivated. Pursue ongoing learning opportunities to strengthen skill sets.
• Excellent interpersonal, verbal, and written communication skills in both technical and non-technical language.
• Demonstrate energy, sense of urgency and enthusiasm in partnering with business stakeholders, colleagues, and suppliers to fulfil needs and sustain world-class solutions.
• Be a strong team player and collaborator willingness to share ideas, documentation, and best practices.