Job Description:

We are seeking a highly skilled and motivated Active Directory Specialist to join our dynamic team. In this role, you will be responsible for the operational excellence and ongoing maintenance of our Active Directory infrastructure, including on-premises and cloud-based environments. As a subject matter expert, you will provide advanced support, troubleshoot complex issues, and implement solutions to ensure the security, stability, and performance of our identity and access management systems.

Key Responsibilities:

• Active Directory Infrastructure Management: Possess a thorough functional understanding of Active Directory and the ability to configure various server roles including Certificate Authority (CA), DNS, DFS, and ADFS. Perform day-to-day operations tasks independently, ensuring the health and integrity of the Active Directory environment.
• Public Key Infrastructure (PKI) and Active Directory Certificate Services (ADCS) Management: Operate and monitor a multi-tier Public-Key-Infrastructure with Active Directory Certificate Services. Serve as the primary subject matter expert in Active Directory and PKI/ADCS operations, providing guidance and support to other team members.
• ADFS Administration: Administer our ADFS identity environment, including managing relying parties and establishing trust relationships for new applications. Troubleshoot and resolve ADFS-related issues.
• Replication and Topology Management: Demonstrate working knowledge of AD Sites and Services, replication topology, and native AD troubleshooting tools. Monitor replication status, identify and remove lingering objects across all domains and forests for all domain controllers. Ensure replication is occurring efficiently and effectively.
• Server Upgrades and Migrations: Upgrade and migrate legacy physical servers running on Server 2012 to a virtual infrastructure with the latest operating systems (2019/2022 Core OS). Coordinate weekly connect meetings with Regional Site Leads and provide consolidated status updates to client architects and product owners regarding migration progress and any challenges encountered.
• Domain Controller Management: Manage Domain Controllers running on both Physical and Virtual Servers. Responsibilities include upgrading hardware firmware, VMware Tools, and other components to remediate security vulnerabilities and maintain optimal performance.
• Azure AD Integration: Register enterprise applications on Azure AD using SAML/SSO protocols. In addition, migrate applications from ADFS to Azure AD to leverage the benefits of cloud-based identity management.
• Azure RBAC and Group Management: Manage Azure Role-Based Access Control (RBAC) models and groups to ensure proper access permissions and security within the Azure environment.
• Azure AD Connect Health Monitoring: Monitor and manage Azure AD Connect Health to proactively identify and resolve synchronization issues between on-premises Active Directory and Azure AD.
• Troubleshooting and Problem Resolution: Investigate and resolve complex Active Directory-related issues, providing root cause analysis and implementing preventative measures.
• Documentation and Knowledge Sharing: Create and maintain detailed documentation of Active Directory configurations, processes, and procedures. Share knowledge and expertise with other team members.
• Security Best Practices: Implement and enforce security best practices for Active Directory, including password policies, account management, and group policy settings.
• Automation and Scripting: Utilize PowerShell scripting to automate routine tasks, improve efficiency, and enhance the management of Active Directory.

Job Qualifications:

• Bachelor's degree in a technology-related field (e.g., Computer Science, Information Technology) is required.
• Minimum of 3-4 years of hands-on experience in Active Directory administration and management in a large enterprise environment.
• Must have certification in AZ-900: Microsoft Azure Fundamentals.
• Essential Skills and Experience:
• In-depth knowledge of Active Directory architecture, concepts, and best practices.
• Proven experience with Azure AD, including SAML/SSO configuration and management.
• Hands-on experience with ADCS (Certificate Services) or ADFS (Federation Service).
• Proficiency in Group Policy Object (GPO) management.
• Strong PowerShell scripting skills for automating tasks and managing Active Directory objects.
• Willingness to continuously learn new technologies related to Identity and Access Management (IAM) and cloud security to meet evolving client requirements.
• Flexibility to participate in a rotational shift schedule on a monthly basis, supporting a 24x7 IAM Operations team serving a US-based client.
• Experience managing multi-forest Active Directory environments, Domain Controllers, and PKI with Certificate Authority. Providing L3/expert level support as part of an Operations Team is preferred.
• Strong understanding of AD Attributes, LDAP Queries, and PowerShell scripting for performing AD-related day-to-day operations tasks and GPO configuration.
• Excellent analytical, problem-solving, and communication skills.
• Ability to work independently and as part of a team.

Preferred Skills and Experiences:

• Certification in SC-300: Microsoft Identity and Access Administrator.
• Experience with IAM Security and Federation technologies like OKTA.
• Experience with other cloud platforms (e.g., AWS, Google Cloud Platform).
• Knowledge of security frameworks and compliance standards (e.g., NIST, GDPR).

________________________________________________

COMPANY OVERVIEW

Our business was born at 28 years old. We earned our experience as part of Denmark’s foremost IT infrastructure specialist. Now we’re ready to take the next step with you

Aeven is a new company formed from part of NNIT. That means that even before we opened our doors, we’d clocked up three decades of experience serving critical industries such as life science & healthcare, the public sector, finance, energy & utilities, industrial goods & manufacturing, and retail & consumer goods.

At Aeven, we’re on a quest to keep digital infrastructure critical to the lives of millions, safe, secure, and productive. And to do this, we employ sharp minds, capable hands, and most importantly, positive personalities that are eager to collaborate, contribute, develop their skills, and make a difference.

We’re here to provide digital infrastructure that helps companies and institutions steer a straight course. “With Aeven, wherever you’re going, we’re here – with you all the way. Locally anchored in Denmark but with a global reach, we have three decades of experience helping businesses and institutions on which the health, wealth, and security of millions depends, navigate uncertainty, and thrive”. - Henrik Bodskov, CEO

Read more about AEVEN: www.aevengroup.com

At Aeven, we’re on a mission to keep digital infrastructure critical to the lives of millions, safe, secure, and productive. And to do this, we need sharp minds, capable hands, and most importantly, positive personalities that are eager to collaborate, contribute, develop their skills, and make a difference.

When you join Aeven, you join a culture of expertise, inclusion, and growth where people matter. Your professional growth is valuable to us, and we will support you all the way – whether you ‘re interested in developing greater depth within your area of expertise, want to broaden your scope of skills, or wish to pursue new roles in our organization.

On top of the statutory benefits stipulated by the local law, AEVEN PH employees enjoy the following benefits upon joining:

• Competitive Compensation
• Clothing & Laundry Allowance
• Communication Allowance
• Fitness Allowance
• Healthcare/HMO
• Medical Allowance (Employees/Dependent)
• Life Insurance
• Leave (convertible to cash)
• Rice Subsidy
• Emergency Loan
• First Baby Gift
• Wedding Gift
• Year End Gift
• Performance Bonus
• Flexible Working Hours
• Free Breakfast on Fridays
• Free fruits and wide selection of tea and coffee for free
• Annual flu vaccination for free

Please refer to job description.