IAM Engineer for Directory Services

start date: ASAP - 23/09/2024 
end date: 22/03/2025 extension possible
workload: 100%, remote with 41 h/week
location: remote 
work model: Contracting

As IAM Engineer for directory services you will work closely with cybersecurity, IT operations, and business units to develop and enforce access control policies, manage user identities, and support seamless integration with both cloud and on-premises applications. Additionally, you will ensure that the directory services align with regulatory requirements such as GDPR and HIPAA, while continuously evaluating and adopting emerging technologies to enhance the organization's security and operational efficiency.

Your Tasks:

Design and Implementation of Directory Services:

• Lead the design, deployment, and management of Active Directory (AD) and Azure Active Directory (Azure AD) environments, ensuring they are secure, scalable, and optimized for performance
• Develop and implement policies for directory services that align with organizational security and compliance requirements, including GDPR and HIPAA

Collaboration with IAM Teams:

• Work closely with other IAM teams responsible for Identity Lifecycle, Privileged Access Management, Certificate Services, Application Lifecycle, Authentication, and Authorization to ensure seamless integration and consistent application of security policies across all identity-related areas

Integration and Automation:

• Develop and implement automation scripts and tools to streamline directory management tasks, domain provisioning, standardization in the OU structure and site provisioning & deprovisioning
• Ensure seamless integration between AD, Azure AD, and other IAM tools, enabling a unified identity and access management platform

Security and Compliance:

• Enforce and maintain strict security standards within directory services, ensuring that only authorized users have access to critical systems and data
• Monitor and audit directory services for compliance with internal and external regulations, identifying and mitigating any security risks

Directory Services Optimization:

• Continuously evaluate and optimize the performance of directory services, implementing updates and patches as necessary
• Lead efforts to migrate or upgrade directory services, ensuring minimal disruption to business operations

Support and Collaboration with Managed Services:

• Work closely with the IAM Managed Service team, providing them with technical guidance and support for the operational management of AD and Azure AD
• Act as an escalation point for complex directory services issues that cannot be resolved by the Managed Service team

Documentation and Training:

• Create and maintain comprehensive documentation for directory services architecture, processes, and policies
• Provide training and knowledge transfer to the IAM Managed Service team and other relevant stakeholders
  -Indirect reports  (1 - 3 to operations team)

Your Profile:

• Bachelor's Degree in Computer Science, Information Security or equivalent work experience
• Experience in Active Directory Management from windows 2008 R2 to Windows 2022
• AZ-500: Microsoft Azure Identity and Security (Microsoft) Certificate
• Expert knowledge in Active Directory (AD) with extensive hands-on experience with AD and Azure AD administration, including designing, deploying, and managing these environments in large-scale, global organizations
• Proficiency in configuring and managing Group Policies, DNS, DHCP, and other AD-related services
• Strong understanding of IAM & PAM principles and best practices as well as concepts, particularly in relation to directory services, authentication, authorization, and identity lifecycle management
• Familiarity with other IAM domains such as Privileged Access Management (PAM), Certificate Services, and SSO/MFA solutions
• In-depth knowledge of security best practices related to directory services, including access controls, password policies, and audit logging
• Experience ensuring compliance with industry regulations such as GDPR, HIPAA, and other relevant standards
• Proficiency in scripting languages such as PowerShell, Python, or similar, to automate directory management tasks and integrate with other IAM tools
• Strong analytical skills with the ability to diagnose and resolve complex issues related to directory services
• Experience acting as an escalation point for directory services-related issues
• Ability to collaborate effectively with cross-functional teams, including cybersecurity, IT operations, and business units, to achieve shared goals
• Strong communication skills, with the ability to document and explain technical concepts to both technical and non-technical audiences
• Commitment to staying current with the latest developments in directory services, IAM technologies, and security practices
• Ability to adapt to new technologies and methodologies as the IAM landscape evolves
• Business fluent in english