Back to Jobs

Active Directory - Entra ID Engineer

Remote, US
Full-TimeRemote, USOther

Job Description

Active Directory- Entra ID Engineer Responsibilities

  • Conduct high level project design and create project charters.
  • Review global directory services disaster recovery plans for gaps and define next steps.
  • Engineer, deploy, operationalize, maintain, and support tools associated with AD & Entra ID.
  • Contribute to the engineering and support of AD & Entra ID as needed.
  • Communicate service enhancements and operational efficiency directions, features and roadmaps aligned to the roadmap.
  • Providing technical leadership to others with less knowledge or experience.
  • Liaise with, train, and support operational teams.
  • Assist in technology evaluations and guiding proof of concepts.
  • Participate in solution design discussions. Architect and assist in engineering global AD domain consolidation project(s).

Required Skills

  • Senior and experienced AD and Entra ID Engineer (5-7 years) with Large, Global Enterprise Experience.
  • 5+ years experience in directory services engineering.
  • Good understanding of AD / Entra ID Security.
  • AD Support: Extensive experience in supporting and troubleshooting on-prem Active Directory services (Authentication, DFS, GPO, LDAP).
  • AD Security: Good understanding of AD security, vulnerabilities, and common safeguards.
  • Tier-0 Security: Specific understanding of Tier-0 and identifying its security boundaries.
  • Domain Consolidation: Experience or enhanced understanding of consolidating a large enterprise AD forest.
  • Cloud Interface: Familiar working with the AWS EC2 and Azure environments to build and support services.
  • Disaster Recovery: Enhanced understanding of recovering Active Directory in a DR situation.
  • Tool Development: Experience performing POC testing and driving deployment of AD service-related tools.
  • Customer Focus: Ability to work with application owners to troubleshoot AD service and integration issues.
  • Documentation: Ability to author, review, and edit technical documents at an Engineering and Operational level.
  • Presentation and Training: Ability to conduct knowledge transfer sessions to Engineering and Operations.
  • Making Recommendations: Seek and recommend improvements on existing AD architecture, provide recommendations to improve IT systems.
  • Experience with assisting in creating of Identity and Access Management (IAM) roadmaps for global directory services.
  • Understanding of modern authentication (OIDC, SAML, Kerberos, etc.).
  • Understanding of Role-Based Access Control (RBAC), Policy-Based Access Control (PBAC) and Attribute-Based Access Control (ABAC).
  • Experience with privileged access management for administering directory services.
  • Experience developing solution and system architecture.
  • Understanding of use of machine learning (and exposure to AI) for technology evaluations and enhancement.

Preferred Skills

  • Excellent interpersonal communication skills with strong spoken and written English.
  • Collaborative team worker both in person and virtually using MS Teams or similar.
  • Excellent analytical skills.
  • Organizational skills with attention to detail.
  • Ability to leverage existing documentation.
  • Excellent documentation skills; demonstrated proficiency in Microsoft Office including Word, Excel and PowerPoint.
  • Business outcomes mindset.
  • Solid balance of strategic thinking with detailed orientation.
  • Self-starter, ability to take initiative.
  • Flexibility to accommodate working across different time-zones.

Preferred Education

  • Bachelor's degree (BA/BS) in Computer Science from four-year college or university; or equivalent training, education, and work experience.