Senior IT Consultant
Network Right
AzureCloud
Senior IAM Engineer
McKesson
full-time
Posted on:
Origin: • 🇺🇸 United States • Ohio
Visit company websiteSalary
💰 $121,300 - $202,100 per year
Job Level
Senior
Tech Stack
AzureCloud
About the role
- Provide subject matter expertise and support the analysis, design, and implementation for hybrid on-prem and cloud Active Directory environments and Azure Active Directory/Entra ID tenants
- Engage and collaborate with business and technical partners to integrate systems and applications with centralized authentication such as Active Directory or Azure Active Directory/Entra ID
- Provide deep subject matter knowledge and expertise on Active Directory, Azure Active Directory/Entra ID, and Okta Active Directory synchronization
- Support new product comparison, vetting, and selection process to ensure technology is relevant and meets business requirements
- Drive Active Directory and Entra ID disaster recovery drills, process improvements, and documentation efforts
- Continually enhance authentication platforms, ensuring systems are protected from new and evolving Cyber threats and systems are operationally stable
- Collaborate closely with global cross-functional teams to ensure stability, scalability, and security of identity environments and Okta
- Participate in discussions on all aspects of identity and access management and respond to and resolve complex, high-severity incidents
- Lead regular reviews of deployed infrastructure, develop detailed architecture, and create and update technical documentation and Standard Operating Procedures (SOP)
- Analyze current authentication services platforms to identify technical and operational opportunities for enhancements and develop continuous improvement action plans
- Lead assessments of systems and process hygiene and identify and implement automation
- Actively research and implement new innovations in IT security and IAM technologies and services
- Provide on-call support as needed for operational continuity of Identity platforms (1 week rotation)
Requirements
- Degree or equivalent
- Typically requires 7+ years of relevant experience
- Proven experience as an Active Directory/Entra ID Engineer or similar role with a minimum of 7 years of experience
- Proven ability to effectively prioritize and execute tasks with competing priorities; strong influencing skills to work with various service owners
- Demonstrated experience effectively leading and managing collaborative, service management solutions across disparate functional teams
- Advanced understanding of Active Directory, Azure Active Directory/Entra ID, LDAP, ADFS, and other centralized identity stores
- Advanced understanding of Microsoft Azure and familiarity with IAM permissions on Management Groups, subscriptions, and resources
- Advanced knowledge of Azure Active Directory/Entra ID capabilities such as Conditional Access Policies, Privileged Identity Manager, and Application Registrations
- Advanced understanding of Active Directory attributes, LDAP Queries, PowerShell Scripting, ADFS, GPO analysis and configuration, replication, backup and restore, and certificate installation
- Advanced understanding of implementing security on Active Directory and Entra ID and hardening those platforms
- Experience performing Active Directory and Entra ID backup, restore, and Disaster Recovery exercises
- Advanced understanding of Windows Server operating systems and Active Directory/Azure Active Directory/Entra ID services
- Advanced PowerShell scripting and automation experience, including using APIs such as Microsoft Graph
- Advanced understanding of Single-Sign On and authentication protocols such as SAML & OIDC
- Excellent problem-solving skills and ability to work well under pressure
- Provide on-call support as needed (1 week rotation for ON-call)
