Job title: Systems Administrator
Job Type: Full-time
Job Location: Lake Mary FL 32746 (Hybrid)
DOE Salary & Benefits Offered
Requirements:
- Design and Implement solution to migrate or build new applications on Public/Private Cloud using expertise building petabyte scale data lake using cloud technologies and experience in performing Hadoop and cloud migration in previous projects.
- Architect and develop customer solutions based on current hands-on knowledge of Azure Cloud Microsoft Server OS and Hyper-V product line, storage, networking, management, and associated customer business processes.
- Performs Incident ticket processes; Responds to assigned tickets (routine and urgent) within the timeframe specified by the current service level agreement and works issues through to resolution; Maintains appropriate documentation within the Incident system as determined through periodic ticket quality.
- Research, evaluate and propose new technology solutions focused on improvements or changes to IT procedures or hardware/software configurations; test and implement approved solutions.
- Develop documentation for other technicians and users to leverage as well as provide training to technical groups around the support of IAM technologies.
- Contributes to the platform/solutions engineering efforts for vendor-provided Enterprise IAM products and services. This includes Active participant in IAM Transformation program and projects on a cross-functional team to progressively drive and execute on the lifecycle (adopt, evolve, retire/transform) of our IAM services.
- Good experience with implementing or maintaining large-scale identity and access management solutions, experienced in areas such as: Products/Vendors: Okta, Active Directory (AzureAD/AD), Ping, Azure AD, SailPoint, BeyondTrust, Siteminder, Single Sign-On; Multi-Factor Authentication (MFA), Passwordless.
- Identity Federation, SSO, HCM (e.g., SAP, Workday) and IAM Data Integration Protocols/Standards such as SAML, SCIM, OAuth2, OIDC, LDAP, FIDO2, Kerberos.
- An understanding of core security concerns within a typical application (password hashing, SSL/TLS, encryption at rest, XSS, XSRF).
- Experience designing and implementing Azure SSO infrastructures.
- Experience designing and implementing Azure Multi-factor Authentication (MFA) and Azure Self-service Password Reset (SSPR) infrastructures.
- Experience designing and implementing Azure Administrative Units.
- Experience designing, implementing, and securing Azure Enterprise applications that leverage Modern auth protocols (SAML, OAUTH, OIDC).
- Experience designing, implementing, and maintaining Azure AD Connect, including the ability to configure and troubleshoot synchronization issues.
- Experience designing, configuring, and managing Microsoft Privileged Identity Management (PIM) to enable just-in-time privileged access to resources.
- Experience designing, configuring, and managing Azure AD Conditional Access to bring together signals to make decisions and enforce organization policies.
- Experience with designing configuring Entra Permissions Management, Entra Verified ID, and Entra Workload identities.
- Manage projects related to Business/IT processes supporting hybrid cloud environment. Support MFA, and other Enterprise IAM controls cloud environments.
- Work extensively with domain and application architects to identify, design, and deliver modern secure authentication patterns and services.
- Provide guidance on integrating the identity management authentication and authorization framework into existing applications. Conduct workshops with application support teams for documenting requirements for 3rd party identity management.
- Coordinate with IT Infrastructure and Security Architecture & Engineering to define and implement secure baseline configurations for current platforms supporting 3rd party identities.
- Engage with SecOps to mature access monitoring for Cloud and 3rd party identities.
- Publish IAM security posture metrics for access events of Cloud platforms and 3rd party identity risk management.
- Excellent documentation skills: create procedures, process documentation, and MORE
Skills & Certifications:
- Bachelor’s Degree in or any Computer Engineering, Electronics & Communication Engineering, Computer Systems, Information Systems, Information Technology,
- Configuring, Managing and Maintaining Windows Server 2008
- Active Directory Administration 2008, 2012 or latest
- VMware vSphere Administrator latest.
- Microsoft Azure Administrator
- Microsoft Azure DevOps
Other skills:
- Public/Private Cloud
- Azure Cloud Microsoft Server OS
- Hyper-V product line, storage, networking, management
- IAM technologies
- Okta, Active Directory (AzureAD/AD), Ping, Azure AD, SailPoint, BeyondTrust, Siteminder, Single Sign-On; Multi-Factor Authentication (MFA), Passwordless
- Identity Federation, SSO, HCM
- SAML, SCIM, OAuth2, OIDC, LDAP, FIDO2, Kerberos
- password hashing, SSL/TLS, encryption at rest, XSS, XSRF
- Azure SSO infrastructures
- Azure Self-service Password Reset (SSPR)
- Microsoft Privileged Identity Management (PIM)
- Azure AD Conditional Access
- Entra Permissions Management, Entra Verified ID, and Entra Workload identities.
- AD/LDAP optimizing query performance.
- PowerShell scripting
- TCP/IP, DNS, IPSec
- NAS and SAN storage management, and MS DFS
- DNS, DHCP, Active Directory Server (ADS)
- Windows Server, Active Directory, IIS, Red hat Linux, Windows 7, VMware
- WAN connectivity and IP networking – firewalls, routers, and switches.