Senior Azure Engineer
We are in search of a seasoned Senior Infrastructure Engineer with a profound understanding of Azure core services to join our dynamic team. The chosen candidate will play a pivotal role in designing, implementing, and maintaining our infrastructure solutions, with a focus on Active Directory (AD), Active Directory Certificate Services (ADCS), and Public Key Infrastructure (PKI) systems, while leveraging Azure core services for enhanced security and efficiency.
Employment Type: Part-time
Time Zone: UTC+7 (give or take 1 hour)
Location: Australia
· Design, deploy, and maintain AD infrastructure, encompassing domain controllers, group policies, DNS, and trust relationships.
· Plan, implement, and manage ADCS, including CA hierarchy, certificate templates, and CRLs.
· Develop and maintain PKI solutions to ensure secure communication and authentication across the organization.
· Configure and oversee Azure core services like AAD, Azure Key Vault, Azure Identity Protection, and Azure Security Center for seamless integration with on-premises AD, ADCS, and PKI environments.
· Collaborate with cross-functional teams to integrate AD, ADCS, and PKI solutions with other systems and applications, ensuring compatibility and security compliance.
· Troubleshoot and resolve complex issues related to AD, ADCS, PKI, and Azure core services, maintaining high availability and optimal performance.
· Implement security best practices and policies to safeguard AD, ADCS, PKI, and Azure resources against potential threats and vulnerabilities.
· Automate routine tasks and processes using scripting languages (PowerShell, Python, etc.) and Azure automation tools to streamline operations and improve efficiency.
· Update documentation on infrastructure architecture, malfunctions, and resolutions.
· Stay updated with the latest technologies, trends, and industry developments in AD, ADCS, PKI, and Azure core services to recommend and implement innovative solutions.
· Bachelor’s degree in Computer Science, Information Technology, or related field.
· Extensive experience (7 years) in designing, deploying, and managing AD and ADCS in enterprise environments.
· In-depth knowledge of PKI concepts, including certificate lifecycle management, encryption algorithms, and digital signatures.
· Strong expertise in Azure core services like AAD, Azure Key Vault, Azure Identity Protection, and Azure Security Center.
· Hands-on experience with hybrid cloud architectures, integrating on-premises AD, ADCS, and PKI with Azure services.
· Proficiency in scripting languages (PowerShell, Python, etc.) and automation tools for task automation and orchestration.
· Excellent troubleshooting skills with the ability to diagnose and resolve complex AD, ADCS, PKI, and Azure-related issues.
· Solid understanding of security principles, protocols, and standards (LDAP, SSL/TLS, SAML, OAuth, etc.).
· Experience with Microsoft SCCM for endpoint management and software distribution.
· Familiarity with Core Microsoft Infrastructure services, including DHCP, DNS, NPS, and WSUS.
· Working knowledge of SQL databases for configuration and data management.
· Understanding of networking concepts, protocols, and services (TCP/IP, VLANs, routing, firewalls, etc.).
· Experience with backup and disaster recovery solutions for AD, ADCS, PKI, and Azure resources.
· Familiarity with IT service management platforms such as ServiceNow and ConnectWise for incident, problem, and change management.
· Knowledge of audit standards like PCI, SOX, HIPAA.
· Strong communication and collaboration skills with the ability to work effectively in a team environment.
· Ability to learn quickly.
Preferred Qualifications:
· Experience with IAM solutions, identity federation, and SSO technologies.
· Familiarity with DevOps practices and tools for CI/CD pipelines.
· Knowledge of regulatory compliance requirements related to AD, ADCS, PKI, and Azure services.
· Experience with containerization technologies (Docker, Kubernetes) and microservices architectures.
· Relevant Microsoft certifications, including:
1. AZ-900 Microsoft Certified: Azure Fundamentals
2. AZ-104 Microsoft Certified: Azure Administrator Associate
3. AZ-140 Microsoft Certified: Azure Virtual Desktop Specialty
4. SC-300 Microsoft Certified: Identity and Access Administrator Associate
5. AZ-800, AZ-801 Microsoft Certified: Windows Server Hybrid Administrator Associate
6. SC-100 Microsoft Certified: Cybersecurity Architect Expert