What are we looking for?
The Active Directory Administrator would need to have at least 2 years of directly related experience supporting Active Directory operations. This will include, but is not limited to, 2nd and 3rd level activities related to Microsoft Active Directory Domain Services, Azure Active Directory, Active Directory Federated Services, Active Directory Certificate Services.
Main responsibilities:
Active Directory Domain Services:
- Active Directory installation, upgrade, migration, and structure administration running on Microsoft Windows Server 2012, 2016 or 2019.
- Identity and Access Management (IAM) for privileged accounts.
- Group Policy Management.
- Logon and Authentication Technologies management and troubleshooting (Kerberos & NTLM authentication protocols).
- Active Directory Backup and Recovery and active participation in Disaster Recovery tests.
- Configure and manage Active Directory-Integrated DNS.
- Manage Multisite Infrastructures. Administer Active Directory Sites and Services and Subnet configurations.
- Configure, deploy, manage, and troubleshoot DFS Replication.
- Manage Flexible Single Master Operation (FSMO) roles in Active Directory.
- Manage trust relationships for domains in Active Directory Domain Services.
- Perform reporting and bulk create, delete, modify operations via PowerShell.
- Interactions with operational support teams to provide guidance and assistance for Domain Name System (DNS), Dynamic Host Configuration Protocol (DHCP) service, and DHCP scopes.
- Implement logon restrictions and enable processes and practices to adhere to the tier model requirements (tier 0 hardening, segregation of high-privilege activities from high-risk zones).
Active Directory Certificate Services:
- Installation, configuration, deployment, troubleshooting and maintenance of AD CS.
- Configure, deploy, and manage User and Computer Certificate Templates.
- Configure Certificate auto-enrollment.
- Certificate Lifecycle Management.
- Certificate Revocation List (CRL) management.
- Network Device Enrollment Service (NDES) configuration and management.
Active Directory Federation Services:
- Installation, configuration, migration, troubleshooting and maintenance of AD FS.
- Sign-in Experience Configuration (Single Sign-On SSO).
- Web Services Federation Language (WS-Federation) & Security Assertion Markup Language (SAML).
- RPT & CPT configuration (Configure Claim Rules, create a Claim Provider & Relying Party Trust).
Azure Active Directory:
- Azure Active Directory (Azure AD) configuration, deployment, migration, and management in cloud only or in hybrid environment with an existing on-premises AD Infrastructure.
- Azure AD Identity and Access Management (IAM).
- Azure AD Privileged Identity Management (PIM).
- Azure AD Conditional Access deployment and rollout of Conditional Access policies.
- Azure AD Multi-Factor Authentication set-up and rollout.
- On-premises directories integration with Azure AD, AD Connect sync configuration and management.
- Manage access to resources in Azure AD entitlement management, creation of Access Packages, and Administrative Unit management.
- Azure AD Enterprise Application Management.
Requirements For You:
- Bachelor’s degree in Computer Science, Information Technology, Business or equivalent work or educational experience required.
- Experience working within technical customer support or equivalent work experience.
- Experience with Microsoft Windows Server 2012, 2016 or 2019 administration, maintenance, and troubleshooting.
- Industry-recognized Microsoft Certifications are a plus (ex. Role-based Certifications, MCSE: Server Infrastructure, MCSA: Windows Server 2012 or 2016, etc.)
- Experience or understanding of networking fundamentals and protocols.
- Working knowledge or understanding of enterprise system functions, dependencies and interactions and ability to use this information to troubleshoot.
- Working knowledge or understanding of Information and Communications Technology Infrastructure and Systems (including software, operating systems, databases, hardware, firmware, networks, and the company websites) that are used in an organization.
- Basic knowledge or understanding of PowerShell, VB Script or other programming languages.
- Strong English written and verbal communication skills as well as interpersonal skills to interact with customers and team members. German of French linguistic competencies are a plus.
- Strong work ethic and eagerness to learn and work on changing technologies.
- Ability to manage multiple assignments and tasks while meeting deadlines in a fast-paced customer service environment.
- Ability and willingness to follow policies as per corporate manuals and directives.