Sr Active Directory Engineer

Apply for this position Please mention DailyRemote when applying
timePosted 7 days ago location United States salarySalary undisclosed
Before you apply - make sure the job is legit.

Attempting to apply for jobs might take you off this site to a different website not owned by us. Any consequence as a result for attempting to apply for jobs is strictly at your own risk and we assume no liability.

Job Description

Department Summary The Directory Services Team (DST) within the IT department at Consumers Energy is responsible for architecting, upgrading and maintaining Microsoft Active Directory and related technologies such as Key Infrastructure (PKI), Single Sign-On (SSO), IPAM and HSMs. The team also works with other IT and business teams to conceptualize and design detailed solutions for specific projects enabling the organization to meet business objectives. With an emphasis on infrastructure, the team provides technical leadership to ensure technical designs and implementations are aligned with business requirements. Job DescriptionResponsibilities The Active Directory Engineer is responsible for architecting, upgrading and maintaining Active Directory and related technologies such as PKI, SSO, IPAM and HSMs. Working as part of a team, the Active Directory Engineer will work individually and collectively to resolve IT issues including system failures. Additionally, the Active Directory engineer will ensure compliance of technology solutions with architectural standards and participation in the full development life cycle of Directory Services projects. Key Responsibilities include Extensive knowledge in all aspects of Active Directory related tasks and activities including management of Domain Controllers Supporting, managing and implementing Microsoft Active Directory Federation Services (ADFS) as well as Azure Cloud Services Rotating on call 247 support role Design, develop and deliver automated services based on Azure Active Directory Collaborate to define best practices and standards around Azure AD Evaluate requirements and design solutions based on Azure Active Directory platforms Participate in the evaluation of existing Active Directory Infrastructure, including application of best practices Partner with business analysts, systems analysts and engineers in gathering and reviewing DST requirements Collaborate with application and infrastructure teams to understand scope and requirements Design DST solution architecture for complex, large-scale enterprise, integrating new systems and applications Develop prototypes of the system design and work with database, operations, technical support and other IT areas as appropriate throughout development and implementation processes Establish and communicate technical standards Contribute to the evaluation and determination of software tools and operational feasibility of DST solutions Align with Business Technology Partners in developing business processes for access request, provisioning, access review, user authentication authorization Ensure the quality of deliverables across multiple projects in terms of supporting requirements analysis and the technical architecture Work with other architectsrsquo, Project Management Office and Change Management to ensure integrations are appropriately prioritized and support the business and IT strategic plan Support the evolution of the DST program by implementing and leading integration processes, framework and activities Work with business partners to implement single sign-on authentication solutions (SAML 2.0 or OIDC) for ldquoSoftware as a Servicerdquo (SaaS) application integrations Serve as a fully seasonedproficient senior technical resource provide subject matter knowledge and capabilities as team member and individual contributor Requirements 5+ years IT experience working in an enterprise environment 5 years of experience with Active Directory architecture and infrastructure Expert level knowledge with supporting, managing and implementing Microsoft Active Directory with multiple Domains Extensive (5+ years) experience working with the design and implementation of resilient, high-performing infrastructure with a focus on Active Directory solutions in a heterogeneous vendor environment, including Identity lifecycle management Privileged Account Management Directory Services Authentication, Authorization Single Sign-On (SSO) Public Key Infrastructure (PKI) Federation Services Group Policy Management Experience with security protocols (LDAP, SAML, SPML, XACML, WS-Security, WS-Federation, OIDC, etc). Experience in working with business stakeholders outside of IT for business process assessment, analysis and design Strong scripting skills in Power Shell, VBS, etc. Strong technical skills in Active Directory Certifications highly desirable (MCSE Certified - Core Infrastructure) Strong interpersonal and communication skills with the ability to communicate with all levels in the organization Broad knowledge and experience in Information Security Proven ability to work effectively in a team setting as well as independently with minimal guidance Excellent planning and organizational skills with an ability to understand the long-term ("big picture") The following skills and experience will set you apart from others A bachelor's degree in Computer Engineering, Computer Science, Information Systems or other IT-related area Masters or other advanced degree, ideally in an IT or Business field Energy industry background that includes a working knowledge of effectively mapping technology to business challenges Strong technical knowledge of Quest AD tools Technical knowledge in SAP and experience in integrating DST solutions with SAP 10+ years IT experience with 5+ years architecting and deploying enterprise level technology projects for large companies 2+ years hands-on experience with Azure and Azure AD services 2+ years of experience focused on cloud environments (AzureAzure Active Directory)