Identity and Access Management Domain Administrator Engineer 12+ Months Fully Remote $60/hr C2CUSC and GC Preferred H4 or OPT Can work (Must be geniuned Visa)Job Responsibilities:
- Quickly learn and maintain a complex multi-forest/domain enterprise-wide AD environment, ensuring it is operating optimally by performing activities which may include:
- Replacing and/or upgrading domain controllers (DCs) to the latest version
- Configuring and ensuring adequate monitoring, alerting, and backups
- Assisting with consolidating forests and domains
- Remediating vulnerability, replication, and synchronization issues
- Ensuring consistent AD policies and parameters across the AD landscape
- Integrating DCs with Silverfort
- Integrate with IGA, PAM, MFA, SSO and cloud-based technologies as needed.
- Assist with application integrations into our virtual directory services layer.
- Assist in documenting and maintaining effective internal IAM control processes and procedures.
- Prepare reports and artifacts for internal and external audits.
- Automate processes to identify access discrepancies and remediate the issues.
- Demonstrate excellent problem solving, troubleshooting and communication skills.
- Other duties as assigned.
Required Qualifications
- 5+ years of on-prem Active Directory Administration experience.
- 5+ years' experience working on large scale systems.
- 3+ years of relevant work experience in the identity and access management field.
- Bachelor's degree in computer science, engineering, or related discipline
- Sound knowledge of Microsoft Active Directory, DNS, AD Connect, ADLDS, Entra AD (fka Azure)
- Experience communicating with technical and non-technical end users and stakeholders at all levels across multiple business units.
- Experience establishing and maintaining strong working relationships with a wide variety of stakeholders (e.g. Legal, Business Development, Internal Audit, Fraud Prevention, Physical Security, Software Developer Community, Network Engineering, etc.)
- Excellent problem-solving skills and development of creative solutions.
- Excellent leadership, teamwork, and collaboration skills.
- Results oriented, high energy, self-motivated.
- Continual learner.
- Ability to work in a hybrid environment using SAFe Agile methodologies.
Preferred Qualifications
- Experience with virtual directory services layers (e.g. RadiantOne)
- Experience with SSO and MFA technologies (e.g. Okta, Ping, ForgeRock, Azure, MS Authenticator)
- Hands-on experience with OAuth 2.0, OpenID Connect and SAML 2.0 protocols and deployment.
- Exposure to cloud AAA technologies (e.g. AWS, Google)
- Knowledge and exposure of other Identity and Access Management technologies (e.g. IGA and user provisioning; system authorization; PKI; and PAM and password vaulting systems and services)