Azure Infrastructure Engineer
BizTech Staffing
We are in search of a seasoned Senior Infrastructure Engineer with a profound understanding of Azure core services to join our dynamic team. The chosen candidate will play a pivotal role in designing, implementing, and maintaining our infrastructure solutions, with a focus on Active Directory (AD), Active Directory Certificate Services (ADCS), and Public Key Infrastructure (PKI) systems, while leveraging Azure core services for enhanced security and efficiency.
Responsibilities:
- Design, deploy, and maintain AD infrastructure, encompassing domain controllers, group policies, DNS, and trust relationships.
- Plan, implement, and manage ADCS, including CA hierarchy, certificate templates, and CRLs.
- Develop and maintain PKI solutions to ensure secure communication and authentication across the organization.
- Configure and oversee Azure core services like AAD, Azure Key Vault, Azure Identity Protection, and Azure Security Center for seamless integration with on-premises AD, ADCS, and PKI environments.
- Collaborate with cross-functional teams to integrate AD, ADCS, and PKI solutions with other systems and applications, ensuring compatibility and security compliance.
- Troubleshoot and resolve complex issues related to AD, ADCS, PKI, and Azure core services, maintaining high availability and optimal performance.
- Implement security best practices and policies to safeguard AD, ADCS, PKI, and Azure resources against potential threats and vulnerabilities.
- Automate routine tasks and processes using scripting languages (PowerShell, Python, etc.) and Azure automation tools to streamline operations and improve efficiency.
- Update documentation on infrastructure architecture, malfunctions, and resolutions.
- Stay updated with the latest technologies, trends, and industry developments in AD, ADCS, PKI, and Azure core services to recommend and implement innovative solutions.
Requirements:
- Bachelor’s degree in Computer Science, Information Technology, or related field.
- Extensive experience (7 years) in designing, deploying, and managing AD and ADCS in enterprise environments.
- In-depth knowledge of PKI concepts, including certificate lifecycle management, encryption algorithms, and digital signatures.
- Strong expertise in Azure core services like AAD, Azure Key Vault, Azure Identity Protection, and Azure Security Center.
- Hands-on experience with hybrid cloud architectures, integrating on-premises AD, ADCS, and PKI with Azure services.
- Proficiency in scripting languages (PowerShell, Python, etc.) and automation tools for task automation and orchestration.
- Excellent troubleshooting skills with the ability to diagnose and resolve complex AD, ADCS, PKI, and Azure-related issues.
- Solid understanding of security principles, protocols, and standards (LDAP, SSL/TLS, SAML, OAuth, etc.).
- Experience with Microsoft SCCM for endpoint management and software distribution.
- Familiarity with Core Microsoft Infrastructure services, including DHCP, DNS, NPS, and WSUS.
- Working knowledge of SQL databases for configuration and data management.
- Understanding of networking concepts, protocols, and services (TCP/IP, VLANs, routing, firewalls, etc.).
- Experience with backup and disaster recovery solutions for AD, ADCS, PKI, and Azure resources.
- Familiarity with IT service management platforms such as ServiceNow and ConnectWise for incident, problem, and change management.
- Knowledge of audit standards like PCI, SOX, HIPAA.
- Strong communication and collaboration skills with the ability to work effectively in a team environment.
- Ability to learn quickly.
- Preferred Qualifications:
- Experience with IAM solutions, identity federation, and SSO technologies.
- Familiarity with DevOps practices and tools for CI/CD pipelines.
- Knowledge of regulatory compliance requirements related to AD, ADCS, PKI, and Azure services.
- Experience with containerization technologies (Docker, Kubernetes) and microservices architectures.
Relevant Microsoft certifications, including:
1 AZ-900 Microsoft Certified: Azure Fundamentals
2 AZ-104 Microsoft Certified: Azure Administrator Associate
3 AZ-140 Microsoft Certified: Azure Virtual Desktop Specialty
4 SC-300 Microsoft Certified: Identity and Access Administrator Associate
5 AZ-800, AZ-801 Microsoft Certified: Windows Server Hybrid Administrator Associate
6 SC-100 Microsoft Certified: Cybersecurity Architect Expert