OCTO Active Directory engineer (IAM) - Security

About

Services as an LDAP and IAM services engineer within the CityWide Security Team.

Requirements

• In-depth knowledge of Microsoft-based infrastructure design and development, messaging and directory services best-practices
• Advanced knowledge of systems engineering, operations and management
• Architect level experience planning, documenting, installing, managing, monitoring, and troubleshooting high-availability Exchange Server 2013, 2016, and 2019 environments
• Active Directory for Windows Server 2012/2016/2019
• Wide range of wireless messaging technologies
• Advanced knowledge of messaging security and hygiene
• O365 and Azure AD
• Skills with Azure AD and cloud authentication
• Single sign-on and federation solutions including operations and implementation knowledge of products (such as Azure AD, MFA, SecureAuth, OKTA)
• Privilege accounts lifecycle management solutions including operations and implementation knowledge of products
• Azure AD Identity & Access management skills such as (permission sets, policies, and roles management)
• Proficient in providing guidance on least privilege to business partners
• Familiarity with software development lifecycle (SDLC)
• Hands-on development/coding
• Integrating on-premise applications with a SSO solution and multiple IdPs using SAML

Responsibilities

• Manage Identity Governance and Administration (IGA) provisioning tools
• Assist with maintaining M365 accounts, permissions, and applications
• Maintain Single Sign-on (SSO) and multi-factor authentication (MFA) solutions
• Integration with user directories (including Active Directory, LDAP, Azure, etc.)
• Installation of new software releases and system upgrades
• Evaluate and install patches; resolve software related problems
• Provide technical support by utilizing working knowledge of IAM systems, browsers, etc.
• Assist with integration, implementation, and administration of systems
• Utilize IAM (Identity and Access Management) programs to enable government clients to protect against digital identity risks.
• Provide appropriate access to applications, systems, and data with advanced authentication.
• Oversee the spread of information with privileged access management.
• Verify identity utilizing a wide range of IAM solutions and advanced authentication methods.