Azure Entra Engineer (Active Directory) - Charlotte, NC

DTS is looking for Azure Entra Engineer for our direct client in Charlotte, NC Position Description Responsible for steady state application production support activities including, access management, audits, incident management, change management, event communications, etc. Collaborates closely with technology and business partners to analyze tactical and strategic solutions; uses that information, along with technology strategies to formulate solutions to meet business needs. Provides direction and oversight to design, develop, deploy, and maintain solutions that meet applicable business requirements. Maintains control of Change Management process. Responsible for resolving issues, mitigating risks, and escalating issues/risks when appropriate. This is a mid-level to senior-level highly technical role that will serve as a mentor to more junior sustain resources and will report to a Director of Technology Operations. Job Responsibilities Review and approve root cause analysis and preventative action items Experience with identity access management in a highly regulated environment Creation and management of directory infrastructure including FSMO roles, trusts, Kerberos KDCs, replication topology, schema, etc. Creation of all OU hierarchies with standard sub-OUs, groups, and appropriate security permissions. Apply RBAC and Least Privileged concepts to delegated resources and applications. Partner with technology and application teams provide a simple and secure delegation model. Maintains authentication infrastructure for Azure Entra including SAML, MFA and Conditional Access Policies Partners with business units and maintains user metadata consumed by applications. Monitoring and reporting associated with the reliability and security of Active Directory and Azure Active Directory Collaborate across a wide audience of stakeholders regarding business objectives, priorities, and impact of proposed changes. Contribute to high impact problems/projects through in-depth evaluation of complex business processes, system processes, enterprise standards & procedures. Collaborate with various groups and individuals to troubleshoot and resolve escalated production issues. Partner with multiple teams to ensure appropriate solutions to meet goals as well as identify and define necessary system and process enhancements. Top Skills Identity and access management Maintains authentication infrastructure for Azure Entra including SAML, MFA and Conditional Access Policies; Creation of all OU hierarchies with standard sub-OUs, groups, and appropriate security permissions. Apply RBAC and Least Privileged concepts to delegated resources and applications. Partner with technology and application teams provide a simple and secure delegation model; Creation and management of directory infrastructure including FSMO roles, trusts, Kerberos KDCs, replication topology, schema, etc.; Standardize help establish and follow procedure, look for improvements and document results in confluence Strong individual performer, self-starter who takes initiative; excellent communication skills and works well collaboratively. Mandatory Skills: 5 Years Active Directory Management Experience 5 years engineering GPO s and DSC policies for fine-grained access management 5 years Experience managing Entra, MFA and Conditional Access policies. Experience managing AD in a PCI and SOX managed environment. Experience integrating with Delinea, Okta. Working Knowledge of Hyper-V, Nutanix, Dynatrace SCOM and GitLab Familiarity with SailPoint IdM. Familiarity with the Okta cloud identity solution. Highly Preferred Skills: .Net, C#, SQL and IIS / tactical tool development Automation, Configuration Management (e.g. Terraform, PowerShell), Dev-ops practices, CI/CD pipelines DTS offers excellent compensation package. Contact : Kuldeep Singh Team Lead Digital Technology Solutions 248-243-1381