×

Please log in to continue...

Login

Sr II Engineer – Active Directory & Azure

Job Description

NYU Langone Health is a world-class, patient-centered, integrated academic medical center, known for its excellence in clinical care, research, and education. It comprises more than 200 locations throughout the New York area, including five inpatient locations, a children’s hospital, three emergency rooms and a level 1 trauma center. Also part of NYU Langone Health is the Laura and Isaac Perlmutter Cancer Center, a National Cancer Institute designated comprehensive cancer center, and NYU Grossman School of Medicine, which since 1841 has trained thousands of physicians and scientists who have helped to shape the course of medical history. At NYU Langone Health, equity, diversity, and inclusion are fundamental values. We strive to be a place where our exceptionally talented faculty, staff, and students of all identities can thrive. We embrace diversity, inclusion, and individual skills, ideas, and knowledge. For more information, go to nyulangone.org, and interact with us on LinkedIn, Glassdoor, Indeed, Facebook, Twitter, YouTube and Instagram.

Position Summary:
The Senior Active Directory and Azure AD Engineer provides support, implementation, and design services for Microsoft Active Directory, AAD, and Windows-based systems across the enterprise, including directory and identity management solutions. Resolves and appropriately completes assigned cases and change requests and acts as an escalation for support issues. Applies new solutions through research and collaboration with the team and determines the course of action for new application initiatives. Implements new software solutions as required by the business. The core infrastructure technology duties include enterprise Microsoft Active Directory, AAD, M365, Certificate Authority and Windows file services architecture creation and management, enterprise-wide system security and policy configuration, and top-level support for enterprise-wide initiatives.

Key Responsibilities:
Produce enterprise-level designs for Active Directory, Azure Active Directory, SaaS application integration, Azure App., and SSO for enterprise initiatives, following those through to implementation via collaboration with project and support teams.

  • Produce Enterprise-level plan for security hardening.
  • Design, implement, and manage Azure infrastructure components, such as virtual networks, subnets, network security groups (NSGs), and Azure Resource Manager (ARM) templates.
  • Monitor and maintain Azure security and compliance, including configuring Azure Security Center, implementing role-based access control (RBAC), and managing security alerts and threat detection.
  • Perform regular audits and assessments of Azure resources and configurations to ensure compliance with security best practices and regulatory requirements.
  • Update Enterprise-level plan for recovery of Active Directory in the event of a disaster or system compromise.
  • Work closely with internal teams to implement Group Policy Objects (GPOs), and performance tuning as it relates to the latest Windows Desktop and Server Migration project(s).
  • Identify opportunities to innovate, extend and enhance service delivery everywhere possible.
  • Own Root Cause Analysis and Problem Management for Active Directory environment.
  • Serves as escalation point for application support and troubleshooting, provides guidance and direction in resolution of escalated issues and/or complex production, application or system problems.
  • Serves as the first line of escalation support for domain technology issues that cannot be resolved by help desk analysts.
  • Perform daily system monitoring, verifying the integrity and availability of all hardware, server resources, systems, and key processes, reviewing system and application logs, and verifying scheduled job completion.
  • Install, configure, and maintain Active Directory, PKI (Microsoft Certificate Authority) and third-party software utilities for hardware systems within company operational guidelines.
  • Venafi, Rapid7 experience is a plus.
  • Develops, documents, and enforces the standards, security procedures, and controls for access to ensure integrity of the Windows Systems, Active Directory, Azure ADConnect and related systems.
  • Create and maintain system documentation for domain technologies, including installation, configuration, and appropriate troubleshooting steps.
  • Improve existing processes through solutions to recurring problems and enhancements to existing solutions or documentation.
  • Manage customer satisfaction through effectively communicating and managing customer expectations
  • Stay up to date with the latest Azure and Microsoft security technologies, trends, and best practices to proactively identify and mitigate potential security risksQualifications

Basic Qualifications:

  • B.S. degree in a computer science, information technology, computer related discipline or 8+ years IT work experience in a national information technology infrastructure environment and Microsoft certifications.
  • Required Skills/Experience:
  • Experience working with Microsoft Identity technologies including Active Directory, Azure ADConnect, Azure Active Directory, SSO, Azure App. etc.
  • Expert knowledge in administering Active Directory (AD), GPO, On-prem Active Directory forest recovery process, Azure ADConnect and identity management, Azure AD DS, M365 platform, Single Sign on (SSO), Federation, Certificate Authority (PKI), PowerShell
  • Good understating of DNS, Azure DNS services.
  • Knowledge of Venafi, Rapid7 preferable.
  • Extensive experience with infrastructure and server theories, principles and concepts; application infrastructure and standards; networking fundamentals; Windows; Physical Server architecture; Virtualization Technologies (e.g. VMware, HyperV) and LAN/WAN/Firewall/VPN network technologies.
  • Professional Skills/Experience:
  • Minimum 8 years overall IT experience with 5+ years of professional experience in designing, automating using Powershell, deploying, securing and monitoring on-prem and Azure Active Directory.
  • Must show a progressive advancement in responsibility including deep troubleshooting technical skills.
  • Must understand how to identify and instill industry best practices.
  • Ability to translate technical issues into understandable business language for end users.
  • Desired experience working in a fast-paced Industrial Manufacturing environment with a career track record of engineering, developing, deploying, and maintaining business-critical systems in the area of technical expertise, including hands-on solution development and implementation experience.
  • Team Player with proven leadership, communication, organizational, and strong interpersonal skills. The role requires significant interaction with many different teams across a large company.
  • Must be able to work in a team environment with a “can do” attitude capable of overcoming difficult challenges.
  • Self-motivated, with keen attention to detail and excellent judgment skills
  • Ability to establish new standards for quality, performance or productivity
  • Must have excellent writing and communication skills, strong communicator with ability to maintain open communication with internal employees, contractors, managers, 3rd parties, and customers as needed
  • Able to integrate and apply feedback in a professional manner

Qualified candidates must be able to effectively communicate with all levels of the organization.

NYU Langone Health provides its staff with far more than just a place to work. Rather, we are an institution you can be proud of, an institution where you’ll feel good about devoting your time and your talents.

NYU Langone Health is an equal opportunity and affirmative action employer committed to diversity and inclusion in all aspects of recruiting and employment. All qualified individuals are encouraged to apply and will receive consideration without regard to race, color, gender, gender identity or expression, sex, sexual orientation, transgender status, gender dysphoria, national origin, age, religion, disability, military and veteran status, marital or parental status, citizenship status, genetic information or any other factor which cannot lawfully be used as a basis for an employment decision. We require applications to be completed online.
If you wish to view NYU Langone Health’s EEO policies, please click here. Please click here to view the Federal “EEO is the law” poster or visit https://www.dol.gov/ofccp/regs/compliance/posters/ofccpost.htm for more information.

NYU Langone Health provides a salary range to comply with the New York state Law on Salary Transparency in Job Advertisements. The salary range for the role is $92,065.99 – $122,326.84 Annually. Actual salaries depend on a variety of factors, including experience, specialty, education, and hospital need. The salary range or contractual rate listed does not include bonuses/incentive, differential pay or other forms of compensation or benefits.

To view the Pay Transparency Notice, please click here

Job Category
Computer and IT
Job Type
Full Time/Permanent
Salary
USD 92,065.99 - 122,326.84 per year
Country
United States
City
New York
Career Level
unspecified
Company
NYULMC
JOB SOURCE
https://nyulangone-openhire.silkroad.com/epostings/?fuseaction=app.jobInfo&version=1&jobid=87659