Proven experience as an Active Directory / Entra ID expert.
* In-depth knowledge of Microsoft’s Active Directory, Entra ID, and Microsoft 365 services.
* Strong understanding of identity and access management principles.
* Good knowledge of Microsoft Windows Server Operating Systems and Windows Desktop Operating Systems
* Strong knowledge of AD / Entra ID security best practices and overall security.
* Good understanding of Microsoft Azure services and resources.
* Excellent problem-solving skills and the ability to work under pressure.
* Strong communication and interpersonal skills.
* Relevant certifications would be a plus.
* Ability to work independently and as part of a team.
* Review relevant AD and Entra ID documentation.
* Perform an AD and Entra ID assessment in order to get acquainted with the platforms and identify possible issues, quick wins and optimizations / configuration needs.
* Define an AD and Entra ID operational roadmap with the Cloud and Hosting / DWP / Networking Architects Team.
* Design, implement, and manage Active Directory and Entra ID environments.
* Implement and manage identity and access management solutions in line with the company’s needs.
* Be able to implement and troubleshoot AD and Entra ID policies and configurations (ex: GPOs. AAD Sync, ADFS, SSO, MFA).
* Optimize system performance, conduct regular audits, and troubleshoot issues.
* Develop and implement policies and procedures for the usage of the identity and access systems.
* Collaborate with other IT team members and stakeholders to ensure system efficiency and security.
* Provide technical support and training to users on identity and access management.
* Manage user identities and access across Microsoft 365 services.
* Stay up to date with the latest trends and changes in Microsoft 365, Active Directory, and Entra ID.
* Knowledge of the different AD components, such as domains, forest, domain controllers, sites, and trusts
* Knowledge of features and roles relevant to AD, including DNS, DHCP, Group Policy and certificate Services
* Understanding of the best practices for scalability, security, and performance
* Knowledge of the role-based access control (RBAC) and delegation of administrative tasks
* Maintain and monitoring health and performance of AD infrastructure.
* Troubleshooting and resolving issues related to replication, authentication and directory service errors.
* Experience in configuring and managing ADFS for SSO and Identity federation.
* Knowledge of Security features such as BITLocker, credential Guard and Windows Defender
* Proficiency in using PowerShell for automating routine tasks, managing AD objects and scripting administrative functions.
* Understanding of networking concepts, including TCP/IP, subnets, and routing.
* Knowledge of DNS configurations and troubleshooting
* Implementing and testing backup and recovery strategies for Active Directory
* Familiarity with Windows Server backup and third-party backup solutions
* Experience in upgrading and migrating Active Directory environments to newer versions.
* Knowledge of tools and methodologies for domain and forest migrations
* Maintaining comprehensive documentation of Active Directory configurations, policies, and procedures
* Experience with configuration and managing Azure Entra ID for hybrid Identity scenarios.
* Synchronization of on-prem AD objects and Azure Entra ID
* Implementation and management of SSO solutions using Azure Entra ID
* Integration with various applications and services for seamless authentication
* Configuring and managing privileged roles and time-bound access using Azure AD PIM
* Monitoring and auditing privileged access.
* Experience with managing identity and access in multi-cloud environments, integrating Azure Entra ID with other cloud providers.
* Collaboration with other Azure Services, such as Azure Information Protection, Azure Sentinel and Microsoft365