DST Systems has flagged the Active Directory Adminstrator job as unavailable. Let’s keep looking.

Overview

PepsiCo is looking for an experienced Active Directory and AzureAD/EntraID engineer to help drive the enterprise directory strategy forward for the Identity and Access Management organization. As a member of the Directory Services team, the Directory Services Engineer will be responsible for architecture, design, developing, engineering, deploying, and supporting comprehensive solutions based on unique and complex requirements and problems related to identity and directory services. The Engineer will also be responsible for identifying opportunities for the automation of tasks, simplification of processes, and improve efficiencies in the environment. Skilled in troubleshooting complex technical issues. Works closely with enterprise architects to ensure adequate security solutions are in place to mitigate identified risks sufficiently, while meeting business objectives and regulatory requirements. Provides technical leadership and deliver complex projects.

Responsibilities

  • Provides subject matter expertise in solutioning and implementing AD/AzureAD requirements.
  • Provides advanced architecture and engineering skills to automate and administer AD/Azure AD and compliance requirements.
  • Drives planning and execution of Directory Services roadmaps and technology enhancements.
  • Creates and maintains standards surrounding documentation related to Directory Services processes, procedure and infrastructure.
  • Assesses current applications and architecture to ensure current implementations align with industry guidelines, best practices and management approved standards.
  • Collaborate with Solution Architects, application development teams, Cybersecurity staff, and the infrastructure team to define the enterprise IAM strategy.
  • Provide level 3 production support to help diagnose and troubleshoot production issues.
  • Adapt the architecture to evolving security conditions and support security guidelines.
  • Develop and deliver applicable documentation, training, and knowledge transfer to both internal and external stakeholders as necessary.
  • Foster the Agile DevOps culture through latest toolset to improve customer satisfaction through rapid, continuous delivery.
  • Analyze, design, and support a highly complex, enterprise-level Active Directory service in a hybrid on-premises and cloud-hosted environment.
  • Manage enterprise identity cloud directories, including Microsoft AD and Azure AD.
  • Translate business needs into workable technology solutions.
  • Participate in or lead troubleshooting and incident resolution of complex high severity incidents.
  • Develop automated solutions using scripts, pipelines, and cloud-based server-less computing platforms.
  • Develop detailed architecture, standards, design, and implementation documentation.
  • Analyze the current Directory Services environment to identify technical and operational opportunities and develop continuous improvement action plans.
  • Participate in disaster recovery, capacity planning, performance monitoring, and maintenance to ensure high availability.
  • Build security models and manage Azure AD infrastructure and drive application migrations and integrations.
  • Build and manage PKI solutions and infrastructure.

Qualifications

Years of Experience

  • 13+ years of overall IT experience.
  • 9+ years in IT with focus in security and IAM
  • 7+ years’ experience with engineering and design of Active Directory
  • 5+ years’ experience with engineering, design and setting up Azure AD
  • 9+ years in supporting Active Directory
  • 6+ years supporting Azure Active Directory
  • 5+ years building and managing PKI solutions.
  • Bachelors in Engineering, Computer Science or related field

Mandatory Technical Skills

  • Overall knowledge in security best practices
  • Overall knowledge with Identity and Access solutions
  • Experience with developing, planning, and implementing a large-scale enterprise-level Active Directory and Azure AD infrastructure, including but not limited to the following components:
  • Domain Controller deployment
  • Securing Active Directory
  • Advanced GPO settings
  • Advanced replication management
  • Experience with governance and compliance, including the following:
  • SOX controls
  • Advanced auditing techniques
  • Experience working with large-scale, enterprise-level LDAP / Active Directory / Azure AD / EntraID environments.
  • Knowledge of programming/scripting disciplines like the following:
  • VBScript
  • PowerShell
  • Hands on experience with building AD, Azure AD, application security models etc.
  • Good understanding of the latest security principles like zero trust and passwordless authentication to implement new standards in the authentication model.
  • Experience with privileged account management including Just in Time access, least privileged access etc.
  • Experience building and managing PKI and supporting infrastructure including HSM, EKCLM, CA etc.

Mandatory Non-Technical Skills

  • Strong oral and written communications skills
  • Ability to work within project timelines.
  • Deliver outcomes with a little supervision, must be a self-starter and self-motivator.
  • Proactive approach and enthusiasm for problem identification and solving.
  • Ability to think strategically and suggest creative solutions.
  • Ability to synthesize complex requirements into simple business practices.
  • Flexible and able to adapt to changing priorities.

Differentiating Competencies

  • Ability to demonstrate analytical and critical thinking, attention to detail, solution orientation in a fast-paced environment.
  • Good written and oral communication skills in English (other foreign languages well seen)
  • A team-focused mentality with the proven ability to work effectively with diverse stakeholders.
Read Full Description
Confirmed 17 hours ago. Posted 23 days ago.

Discover Similar Jobs

Suggested Articles