Responsibilities

• Leads research, design, architecture, implementation and security of Active Directory ( SSO/AD FS, WFS, DNS, DHCP) and PKI infrastructure for the enterprise
• Design, implement, secure, manage IAM solutions, policies, roles, identity federation for multi-tier apps on prem, cloud hosted, and SAS applications
• Work closely with IT and business partners to ensure identity and access solutions meet or exceed security policies and regulatory compliance requirements
• Work with various application, infrastructure, and security engineering teams to ensure proper IAM controls
• Responsible for design / integration of active directory services with AWS / AZURE
• Leads design, implementation, support and integration of Active Directory services in support of Office 365 / Sharpoint / OneDrive / Sailpoint / AWS
• Leads research, design, architecture and implementation of the enterprise cloud services supporting related Infrastructure as a Service (IaaS), Software as a Service (SaaS) and managed platforms (PaaS).
• Provides direction and guidance for design, architecture, implementation and security of business-critical infrastructure platforms that host LFG applications and platforms
• Development of infrastructure automation (IaC) utilizing Puppet Enterprise, Chef, Ansible, PowerShell etc.
• Coordinates and leads projects through all phases of design and implementation withing areas of responsibility

Experience

• 5 - 7 years IT work experience in an enterprise information technology infrastructure environment with emphasis in Active Directory technology and ADFS ( required )
• Expert level knowledge of Active Directory including SSO / Identity Federation Services architecture and LDAP (SSO/ADFS, WFS, DNS, DHCP, RBAC, SAML + PKI) ( required )
• Expert level knowledge of authentication / authorization principles: OAuth, SAML, Kerberos, MFA, Cognito, S
• Broad understanding of core Microsoft cloud technologies and services, including Azure IaaS and Office 365, and core Microsoft technologies, including Active Directory, ADFS, Exchange, Sharepoint, Windows Server, OneDrive
• Extensive experience working with AWS and AZURE / O365 (AWS Certified Architect Preferred)
• Prover track record operating in a lead technical role and managing large enterprise multi-domain Active Directory environments : AD Services, Replication, Performance, Troubleshooting, Monitoring, Disaster Recovery, Security and Administration
• Prover track record operating in a lead IAM role designing / deploying complex solutions utilizing Microsoft Active Directory Federated Services ( ADFS )
• Fundamental networking knowledge - IP, DHCP, DNS, WINS, routing, etc
• Knowledge of federated identity technologies
• Experince with web server technology IIS, Apache/PHP, Tomcat
• Proven experience with Windows Server 2008 (R2), Windows Server 2012(R2), Windows Server 2016
• Experience with Private Cloud and Hybrid cloud configurations, patterns, and security practices/paterns in Azure; scripting and automation technologies; PowerShell ; and experience leading enterprise deployments.
• Proven self-starter who takes ownership of opportunities, works independently, manages multiple / simultaneous projects, and deals well with ambiguity and last-minute changes
• Experience deploying virtual infrastructure using cloud services
• Experience delivering projects via Agile methodologies
• Working knowledge of concepts such as CI/CD, source control, application publishing, etc.
• Strong executive presence including communication and presentation skills with a high degree of comfort to large and small audiences.
• Proficiency in IAM principles, with experience in cloud computing, cloud security, security assurance
• Prove track record of delivering highly secure enterprise solutions
• Strong knowledge of Software Development Life Cycle