https://bayt.page.link/b26HLiK7bbZqkhDz7
أنشئ تنبيهًا وظيفيًا للوظائف المشابهة

الوصف الوظيفي

Overview Main Purpose of the Role PepsiCo is looking for an experienced Active Directory and AzureAD/EntraID SME to help drive the enterprise directory strategy forward for the Identity and Access Management organization. As a member of the Directory Services team, the Directory Services Engineer will be responsible for architecture, design, developing, engineering, deploying, and supporting comprehensive solutions based on unique and complex requirements and problems related to identity and directory services. The SME will also be responsible for identifying opportunities for the automation of tasks, simplification of processes, and improve efficiencies in the environment. Skilled in troubleshooting complex technical issues. Works closely with enterprise architects to ensure adequate security solutions are in place to mitigate identified risks sufficiently, while meeting business objectives and regulatory requirements. Provides technical leadership and deliver complex projects. Responsibilities Accountabilities Architect, design, and support a highly complex, enterprise-level Active Directory service in a hybrid on-premises and cloud-hosted environment. Provides subject matter expertise in solutioning and implementing AD/EntraID requirements Provides advanced architecture and engineering skills to automate and administer AD/ EntraID and compliance requirements. Solid working experience securing AD & EntraID using best practices and industry leading security toolsets. Collaborate with Solution Architects, application development teams, Cybersecurity staff, and the Infrastructure team to define the enterprise IAM strategy. Help drive planning and execution of Directory Services roadmaps and technology enhancements. Creates and maintains standards surrounding documentation related to Directory Services processes, procedure, and infrastructure. Assesses current applications and architecture to ensure current implementations align with industry guidelines, best practices, and management approved standards. Provide level 3 production support to help diagnose and troubleshoot production issues. Adapt the architecture to evolving security conditions and support security guidelines. Develop and deliver applicable documentation, training, and knowledge transfer to both internal and external stakeholders as necessary. Foster the Agile DevOps culture through latest toolset to improve customer satisfaction through rapid, continuous delivery. Manage enterprise identity cloud directories, including Microsoft AD/EntraID. Translate business needs into workable technology solutions. Participate in or lead troubleshooting and incident resolution of complex high severity incidents. Develop automated solutions using scripts, pipelines, and cloud-based server-less computing platforms. Develop detailed architecture, standards, design, and implementation documentation. Analyse the current Directory Services environment to identify technical and operational opportunities and develop continuous improvement action plans. Participate in disaster recovery, capacity planning, performance monitoring, and maintenance to ensure high availability. Build security models and manage Entra ID infrastructure and drive application migrations and integrations. Keep directory service environment in compliance all the time. Build and manage PKI solutions and infrastructure. Qualifications Years of experience 10+ years in IT with focus in security and IAM 10+ years experience with engineering and design of Active Directory 5+ years experience with engineering, design and setting up Azure AD/EntraID 5+ years building and managing PKI solutions Bachelors in Engineering, Computer Science or related field Mandatory technical skills Experience with developing, planning, and implementing a large scale enterprise-level Active Directory and Azure AD/ EntraID infrastructure, including but not limited to the following components: Domain Controller deployment Securing Active Directory Advanced GPO settings Advanced replication management Advanced auditing techniques Experience working with large-scale, enterprise-level LDAP / Active Directory / Azure AD / EntraID environments Experience with enterprise security including TLS including SMTP over TLS, certificates, HSM, NIST standards Experience with Microsoft Windows operating system environment Authentication mechanisms including domain authentication, OAuth/Modern Authentication, Kerberos Experience with network & security components including load balancers, proxy, load balancers and firewalls Strong knowledge of DNS, DHCP, and networking. Hands on experience with building AD, Azure AD, application security models etc. Experience in Providing advanced architecture and engineering skills to automate and administer AD/Azure AD and compliance requirements. Knowledge of programming/scripting such as PowerShell, Python etc. like the following: Good understanding of the latest security principles like zero trust and passwordless authentication to implement new standards in the authentication model Experience with governance and compliance such as SOX Experience building and managing PKI and supporting infrastructure including HSM, EKCLM, CA etc. Mandatory non-technical skills Strong oral and written communications skills Ability to work within project timelines Deliver outcomes with a little supervision, must be a self-starter and self-motivator Proactive approach and enthusiasm for problem identification and solving Ability to think strategically and suggest creative solutions Ability to synthesize complex requirements into simple business practices Flexible and able to adapt to changing priorities

لقد تجاوزت الحد الأقصى لعدد التنبيهات الوظيفية المسموح بإضافتها والذي يبلغ 15. يرجى حذف إحدى التنبيهات الوظيفية الحالية لإضافة تنبيه جديد
تم إنشاء تنبيه للوظائف المماثلة بنجاح. يمكنك إدارة التنبيهات عبر الذهاب إلى الإعدادات.
تم إلغاء تفعيل تنبيه الوظائف المماثلة بنجاح. يمكنك إدارة التنبيهات عبر الذهاب إلى الإعدادات.