Azure Infrastructure Engineer

We are in search of a seasoned Senior Infrastructure Engineer with a profound understanding of Azure core services to join our dynamic team. The chosen candidate will play a pivotal role in designing, implementing, and maintaining our infrastructure solutions, with a focus on Active Directory (AD), Active Directory Certificate Services (ADCS), and Public Key Infrastructure (PKI) systems, while leveraging Azure core services for enhanced security and efficiency.

Responsibilities:

• Design, deploy, and maintain AD infrastructure, encompassing domain controllers, group policies, DNS, and trust relationships.
• Plan, implement, and manage ADCS, including CA hierarchy, certificate templates, and CRLs.
• Develop and maintain PKI solutions to ensure secure communication and authentication across the organization.
• Configure and oversee Azure core services like AAD, Azure Key Vault, Azure Identity Protection, and Azure Security Center for seamless integration with on-premises AD, ADCS, and PKI environments.
• Collaborate with cross-functional teams to integrate AD, ADCS, and PKI solutions with other systems and applications, ensuring compatibility and security compliance.
• Troubleshoot and resolve complex issues related to AD, ADCS, PKI, and Azure core services, maintaining high availability and optimal performance.
• Implement security best practices and policies to safeguard AD, ADCS, PKI, and Azure resources against potential threats and vulnerabilities.
• Automate routine tasks and processes using scripting languages (PowerShell, Python, etc.) and Azure automation tools to streamline operations and improve efficiency.
• Update documentation on infrastructure architecture, malfunctions, and resolutions.
• Stay updated with the latest technologies, trends, and industry developments in AD, ADCS, PKI, and Azure core services to recommend and implement innovative solutions.

Requirements:

• Bachelor’s degree in Computer Science, Information Technology, or related field.
• Extensive experience (7 years) in designing, deploying, and managing AD and ADCS in enterprise environments.
• In-depth knowledge of PKI concepts, including certificate lifecycle management, encryption algorithms, and digital signatures.
• Strong expertise in Azure core services like AAD, Azure Key Vault, Azure Identity Protection, and Azure Security Center.
• Hands-on experience with hybrid cloud architectures, integrating on-premises AD, ADCS, and PKI with Azure services.
• Proficiency in scripting languages (PowerShell, Python, etc.) and automation tools for task automation and orchestration.
• Excellent troubleshooting skills with the ability to diagnose and resolve complex AD, ADCS, PKI, and Azure-related issues.
• Solid understanding of security principles, protocols, and standards (LDAP, SSL/TLS, SAML, OAuth, etc.).
• Experience with Microsoft SCCM for endpoint management and software distribution.
• Familiarity with Core Microsoft Infrastructure services, including DHCP, DNS, NPS, and WSUS.
• Working knowledge of SQL databases for configuration and data management.
• Understanding of networking concepts, protocols, and services (TCP/IP, VLANs, routing, firewalls, etc.).
• Experience with backup and disaster recovery solutions for AD, ADCS, PKI, and Azure resources.
• Familiarity with IT service management platforms such as ServiceNow and ConnectWise for incident, problem, and change management.
• Knowledge of audit standards like PCI, SOX, HIPAA.
• Strong communication and collaboration skills with the ability to work effectively in a team environment.
• Ability to learn quickly.
• Preferred Qualifications:
• Experience with IAM solutions, identity federation, and SSO technologies.
• Familiarity with DevOps practices and tools for CI/CD pipelines.
• Knowledge of regulatory compliance requirements related to AD, ADCS, PKI, and Azure services.
• Experience with containerization technologies (Docker, Kubernetes) and microservices architectures.

Relevant Microsoft certifications, including:

1 AZ-900 Microsoft Certified: Azure Fundamentals

2 AZ-104 Microsoft Certified: Azure Administrator Associate

3 AZ-140 Microsoft Certified: Azure Virtual Desktop Specialty

4 SC-300 Microsoft Certified: Identity and Access Administrator Associate

5 AZ-800, AZ-801 Microsoft Certified: Windows Server Hybrid Administrator Associate

6 SC-100 Microsoft Certified: Cybersecurity Architect Expert