Identity Management Services AD Engineer - REMOTE - Sierra Solutions Group
Vienna, VA 22182
About the Job
Job Summary
We are looking for an Identity Management Services AD Engineer for technology client. The Identity and Directory Management Services (IDMS) Active Directory (AD) Engineer will support the design, administration, management, execution & maintenance of Identity & Directory Management Services (IDMS) and Identity, Credential, and Access Management (ICAM) solutions to meet the needs of the enterprise users & the enterprise architecture. These services, systems, and capabilities include, but not limited to, directory services management, ICAM, privileged account management, Single Sign-On (SSO), Active Directory (AD) Domain Name System (DNS) services, Public Key Infrastructure (PKI), Multi-Factor Authentication (MFA), auditing and log management, Continuous Diagnostics and Mitigation/Dynamic and Evolving Federal Enterprise Network Defense (CDM/DEFEND), and the management of appliances. IT currently leverages Microsoft (MS) AD as the authoritative account management system.
Primary Responsibilities
Education and Experience
The following are DESIRED for this position:
We are looking for an Identity Management Services AD Engineer for technology client. The Identity and Directory Management Services (IDMS) Active Directory (AD) Engineer will support the design, administration, management, execution & maintenance of Identity & Directory Management Services (IDMS) and Identity, Credential, and Access Management (ICAM) solutions to meet the needs of the enterprise users & the enterprise architecture. These services, systems, and capabilities include, but not limited to, directory services management, ICAM, privileged account management, Single Sign-On (SSO), Active Directory (AD) Domain Name System (DNS) services, Public Key Infrastructure (PKI), Multi-Factor Authentication (MFA), auditing and log management, Continuous Diagnostics and Mitigation/Dynamic and Evolving Federal Enterprise Network Defense (CDM/DEFEND), and the management of appliances. IT currently leverages Microsoft (MS) AD as the authoritative account management system.
Primary Responsibilities
- Active Directory including but not limited to:
- Microsoft Active Directory
- Azure Active Directory
- NetIQ DRA
- NetIQ Group Policy Administrator (GPA)
- Active Directory Lightweight Directory Services
- Vulnerability Mitigation
- Hands-on experience with cloud computing services (O365/Microsoft Azure/AWS).
- Experience with network architecture.
- Powershell, java and .NET scripting.
- An understanding of Zero Trust concepts.
- Strong experience with Directories, SSO, Federation, Delegated administration, API gateways, SOA services.
- Strong communication skills with customers over phone, email, or ticketing system.
- Must be willing to work a variety of shifts, including holidays as scheduled.
- Providing on-call rotation support on a routine basis.
Education and Experience
- Public Trust Clearance or ability to obtain.
- ITILv4 Foundation Training and ITILv4 Foundation Certification, may be obtained within 120 days after hire.
- Expertise in Powershell, java and .NET scripting.
- Considered Senior Active Directory Engineer.
- Applies fundamental concepts, processes, practices, and procedures on technical assignments.
- Performs work that requires practical experience and training. Work is performed under supervision.
- Proven ability to work independently in a full and/or partial remote environment with limited supervision and may supervise/lead others.
- Possess the ability to communicate in both oral and written forms, demonstrating an ability to communicate effectively with all levels of staff as well as clients.
- Demonstrated ability to apply comprehensive knowledge across key tasks and high impact assignments with the ability to use practical experience and training to determine how to accomplish tasks.
- 10 years of experience and bachelor's degree or equivalent.
- Experience as a remote worker demonstrating time management and self discipline with cultural change management and Agile mindset.
The following are DESIRED for this position:
- Strong knowledge of the different identity and access management (IAM) concepts, technologies and authentication protocols.
- Public Key Infrastructure (PKI):
- Active Directory Certificate Services (AD CS).
- HID Credential Management System (CMS).
- HID ActivClient.
- Federal PIV/CAC.
- Safenet Hardware Security Module (HSM's).
- Identity Management services operations including but not limited to
- SailPoint IdentityIQ
- SecureAuth
- SAML 2.0
- Forefront Identity Manager/Microsoft Identity Manager
- Active Directory Federation Services
- Public Key Infrastructure (PKI):
- Proficiency in the Google Suite (Gmail, Calendar, Chat, Meet, Docs, Slides, Sheets), Slack, and ServiceNow.
Source : Sierra Solutions Group