Cloud Identity Engineer

Job Description:

The Active Directory Engineering team is seeking a Cloud Identity Engineer responsible for analysis, design, implementation coordination and 4th level escalation support, specifically pertaining to integration of on-premise Active Directory with cloud-based solutions, such as Microsoft Azure.

The individual will work within the engineering organization, interacting with peer teams and partner groups, scaling and deploying improvement, facilitating cloud integration efforts of Active Directory identities and services within the enterprise. The candidate must be able to operate and function well in a multi-cultural, geographically dispersed virtual team environment. Strong leadership and communication skills are an absolute must. Ability to balance business expectations while maintaining the security best interests of on-premise Active Directory is of paramount importance.

Primary responsibilities:

Analysis, design, planning and 4th level support of Active Directory cloud identity solutions

Translate business needs into workable technology solutions that meet the requirements of internal customers and peer Active Directory Engineering and Operations teams

Responsible for developing standards, target states, roadmaps, effectively socializing and obtaining consensus across architecture, engineering and operations teams

Independently manage and perform engineering role for large scale Active Directory cloud identity efforts and initiatives

Perform various functions and duties in support of audit and compliance deliverables verification/remittance of evidence

Develop detailed architecture, standards, design and implementation documentation

Analyze current Active Directory cloud integration environment to identify both technical and operational challenges while making recommendations and developing solutions for improvement

Participate in or lead complex or high severity troubleshooting and incident/problem resolutions with other infrastructure teams

Required skills:

Must have an expert level understanding of Azure AD Connect including previous experience engineering and deploying the solution

At least 5-10 years of dedicated Active Directory engineering and architecture experience that includes designing, implementing and maintaining complex enterprise level (50K+ objects) Active Directory solutions and security models

Candidate should have experience where they have maintained Active Directory Enterprise/Domain Admin and/or Azure Global Admin responsibilities

Extensive experience and advanced knowledge deploying Windows security concepts and least-privilege design principles

Deep understanding of federation technologies (WS-Fed, OAuth, SAML, etc.)

Extensive knowledge of Azure security best-practices, latest security threats and mitigation thereof

Knowledge of Azure MFA integration solutions

Understanding of Microsoft Azure tenants/subscriptions

Should have a working understanding of MIIS Metaverse

Thorough understanding of encryption technologies (both encryption types and protocols/standards)

Strong working knowledge of Windows 2008, 2012 and 2016 operating systems platforms, DNS, networks, DMZs, firewalls, network security zones and proxies

Advanced PowerShell scripting experience and capabilities

Working experience of ITIL framework and enterprise change management processes

Experience and confidence to be the subject matter expert (SME) in order to coordinate technical efforts and resolve issues across multiple teams in a large scale enterprise environment

Excellent communication skills, including proven experience effectively communicating technical challenges and solutions to peers, customers and senior management

Strong risk management skills including confidence to vocalize concerns which may jeopardize integrity of on-premise Active Directory

Desired Skills:

Knowledge of Ping Identity solutions

Microsoft Identity Manager (MIM/FIM) conceptual knowledge

Alternative scripting/programming skills (C#, VBscript, Javascript, Python, Perl)

Microsoft Azure Advanced Threat Protection (AATP)

MS SQL/DB knowledge

Unix/Linux skills; Vintela VAS integration; RedHat IdM

Core Technology Infrastructure Organization:

• Is committed to building a workplace where every employee is welcomed and given the support and resources to perform their jobs successfully.
• Wants to be a great place for people to work and strive to create an environment where all employees have the opportunity to achieve their goals.
• Believes diversity makes us stronger so we can reflect, connect and meet the diverse needs of our clients and employees around the world.
• Provides continuous training and development opportunities to help employees achieve their career goals, whatever their background or experience.
• Is committed to advancing our tools, technology, and ways of working to better serve our clients and their evolving business needs.
• Believes in responsible growth and is dedicated to supporting our communities by connecting them to the lending, investing and giving they need to remain vibrant and vital.

LOB Job Profile:

Leads and/or participates in the design, development, and implementation of complex system engineering activities involving cross-functional technical support, systems programming and data center capabilities. Responsible for components of highly complex engineering and/or analytical tasks and activities. Establishes input/output processes and working parameters for hardware/software compatibility, coordination of subsystems design, and integration of total system. Viewed as a technology subject matter expert; able to provide and communicate complex technology solutions across differing audiences including technical, managerial, business executives, and/or vendors. Will have responsibility for multiple, complex projects; will direct activities of teams related to special initiatives or operations and may have direct reports. Leads the resolution process for complex problems where analysis of situations or data requires an in-depth evaluation of various factors. Exercises judgment within broadly defined practices and policies in selecting methods, techniques, and evaluation criterion for obtaining results. Information Technology degree and/or technology certifications preferred or substantial equivalent experience. Typically 7-10 years of IT experience.

Shift:

1st shift (United States of America)

Hours Per Week:

40