Hybrid - 1x/week in midtown New York City - ONLY CONSIDERING CANDIDATES WHO ARE LOCAL TO NYC/NJ/CT/PA

　　Contract to Hire

　　W2 ONLY - No 3rd Parties

　　Description:

　　Our healthcare client is looking for a Lead/ Senior Azure/AD Identity Management Engineer who can bring strong Lead technical knowledge in the identity, certificate, and security space, along with the capacity to collaborate effectively with diverse teams and personalities and be a great team player to achieve organizational goals. They will expect this person to contribute at a high level, create direction and be a leader that can run on their own, not waiting for instruction.

　　Technically will provides support, implementation, and design services for Microsoft Active Directory, AAD, and Windows-based systems across the enterprise, including directory and identity management solutions. Resolves and appropriately completes assigned cases and change requests and acts as an escalation for support issues. Applies new solutions through research and collaboration with the team and determines the course of action for new application initiatives. Implements new software solutions as required by the business. The core infrastructure technology duties include enterprise Microsoft Active Directory, AAD, M365, Certificate Authority and Windows file services architecture creation and management, enterprise-wide system security and policy configuration, and top-level support for enterprise-wide initiatives.LOur client is looking for a

　　The critical value of this position is the candidate’s ability to bring strong technical knowledge in the identity, certificate, and security space, along with the capacity to collaborate effectively with diverse teams and personalities and be a great team player to achieve organizational goals.

　　MUST HAVE:

　　5-8+ years experience working with Microsoft Identity technologies including Active Directory, Azure ADConnect, Azure Active Directory, SSO, Azure App. etc.

　　Expert knowledge in administering Active Directory (AD), GPO, On-prem Active Directory forest recovery process, Azure ADConnect and identity management, Azure AD DS, M365 platform, Single Sign on (SSO), Federation, Certificate Authority (PKI), PowerShell with a good understating of DNS, Azure DNS services.

　　B.S. degree in a computer science, information technology, computer related discipline. They must have a degree.

　　Must come from a large enterprise environment (10,000+ users)

　　These Engineers will be responsible for:

　　Produce enterprise-level designs for Active Directory, Azure Active Directory, SaaS application integration, Azure App., and SSO for enterprise initiatives, following those through to implementation via collaboration with project and support teams.

　　Produce Enterprise-level plan for security hardening.

　　Design, implement, and manage Azure infrastructure components, such as virtual networks, subnets, network security groups (NSGs), and Azure Resource Manager (ARM) templates.

　　Monitor and maintain Azure security and compliance, including configuring Azure Security Center, implementing role-based access control (RBAC), and managing security alerts and threat detection.

　　Perform regular audits and assessments of Azure resources and configurations to ensure compliance with security best practices and regulatory requirements.

　　Update Enterprise-level plan for recovery of Active Directory in the event of a disaster or system compromise.

　　Work closely with internal teams to implement Group Policy Objects (GPOs), and performance tuning as it relates to the latest Windows Desktop and Server Migration project(s).

　　Identify opportunities to innovate, extend and enhance service delivery everywhere possible.

　　Own Root Cause Analysis and Problem Management for Active Directory environment.

　　Serves as escalation point for application support and troubleshooting, provides guidance and direction in resolution of escalated issues and/or complex production, application or system problems.

　　Serves as the first line of escalation support for domain technology issues that cannot be resolved by help desk analysts.

　　Perform daily system monitoring, verifying the integrity and availability of all hardware, server resources, systems and key processes, reviewing system and application logs, and verifying scheduled job completion.

　　Install, configure, and maintain Active Directory, PKI (Microsoft Certificate Authority) and third-party software utilities for hardware systems within company operational guidelines.

　　Venafi, Rapid7 experience is a plus.

　　Develops, documents, and enforces the standards, security procedures, and controls for access to ensure integrity of the Windows Systems, Active Directory, Azure ADConnect and related systems.

　　Create and maintain system documentation for domain technologies, including installation, configuration, and appropriate troubleshooting steps.

　　Improve existing processes through solutions to recurring problems and enhancements to existing solutions or documentation.

　　Manage customer satisfaction through effectively communicating and managing customer expectations

　　Stay up to date with the latest Azure and Microsoft security technologies, trends, and best practices to proactively identify and mitigate potential security risks

　　About TEKsystems:

　　We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

　　The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

　　We are an equal opportunity employers and will consider all applications without regard to race, genetic information, sex, age, color, religion, national origin, veteran status, disability or any other characteristic protected by law. To view the EEO is the law poster click here. Applicants with disabilities that require an accommodation or assistance a position, please call 888-472-3411 or email [email protected]. This is a dedicated line designed exclusively to assist job seekers whose disability prevents them from being able to apply online. Messages left for other purposes will not receive a response.