Senior Specialist, IT Security (Identity & Directory Services Administrator)

About The Position

Requirements

• Bachelor’s degree in Information Systems, Computer Sciences, or an equivalent IT-related degree and a minimum of 6 years of prior relevant experience. Graduate Degree and a minimum of 4 years of prior related experience. In lieu of a degree, minimum of 10 years of prior related experience.
• 6+ years of experience supporting Active Directory, including advanced expertise in building & maintaining AD domains, troubleshooting replication and kerberos authentication issues, complex group policy design, etc.
• 3+ years of Microsoft Entra ID (Azure AD) administration experience, including experience in a hybrid environment with responsibility for supporting identity synchronization, MFA, privileged identity management, tenant management, conditional access policy creation & modification, and setup of identity federation application authentication.
• 2+ years of PowerShell experience, including creating and modifying scripts for process automation

Nice To Haves

• Experience supporting Entra ID (Azure AD) in a hybrid environment containing multiple AD domains and multiple cloud tenants.
• Experience migrating identities and objects between AD forests
• Microsoft certifications (e.g., Entra ID, Azure Administrator, Identity & Access Administrator) are beneficial.
• Willingness to keep data and information strictly confidential.
• Experience in regulated or high-security environments
• Strong problem-solving and troubleshooting skills.

Responsibilities

• Administer, maintain, and troubleshoot Active Directory Domain Services (AD DS), including users, groups, computers, OU structure, GPOs, domain controllers, and associated Microsoft or third-party applications
• Manage Microsoft Entra ID tenants, identities, and directory integrations
• Design and support hybrid identity solutions using Entra Connect (formerly AADC) and on-prem identity solutions
• Support identity lifecycle processes (joiners, movers, leavers)
• Implement and manage Conditional Access, MFA, and identity protection policies
• Configure and maintain Privileged Identity Management (PIM)
• Monitor and respond to identity-related security events and alerts
• Enforce least-privilege access and zero-trust principles
• Support secure authentication mechanisms including Kerberos, SAML, OAuth, and modern authentication
• Integrate Entra ID with SaaS, IaaS, and on-premises applications
• Manage service principals, app registrations, and API permissions
• Diagnose and resolve complex identity, authentication, and replication issues
• Perform routine maintenance, health checks, and performance tuning
• Support audits, compliance requirements, and security assessments
• Develop and maintain documentation, standards, and operational procedures
• Participate in on-call rotation and provide after-hours support as requried
• Automate identity management tasks using PowerShell and Entra ID APIs
• Recommend and implement improvements to security, scalability, and reliability
• Participate in infrastructure projects, migrations, and upgrades
• Support acquisition, divestiture, and integration activities.
• Support AD forest/domain migration work and Azure tenant consolidations.

Benefits

• health and disability insurance
• 401(k) match
• flexible spending accounts
• EAP
• education assistance
• parental leave
• paid time off
• company-paid holidays