Key skills
CloudDNSVMware.NETPowerShellAzureIAMEntra IDSAMLActive DirectoryCommunicationFirewall
About this role
Role Overview
- Implementing identity solutions and directories such as Active Directory, federation, authentication, and authorization for identities and devices.
- Creating designs for technical implementations, in regard to the customers’ requirements and demands.
- Managing the deliveries of both architectural and technical solutions and that solution proposals can be implemented in practice.
- Being aware and kept up to date with common vulnerabilities and threats within the identity domain and being able to mitigate them both in design choices and in the implementation of technical solutions.
- Collaborating on team-level but still being comfortable taking own initiatives to drive own work and projects forward.
- Staying updated on industry trends and best practices within Directory Services and the identity domain.
- Ensuring security standards and regulatory requirements are being considered in customer deliveries.
Requirements
- At least 10 years of technical expertise in Active Directory Domain Services (AD DS) at an expert level – implementation, design, and securing.
- At least 3 years of experience in designing and implementing the Microsoft Legacy Tier Model or Enterprise Access Model with Privilege Access Workstations (PAWs).
- A minimum of 5 completed projects related to Active Directory Domain Services (AD DS).
- At least 3 completed projects related to Active Directory Domain Services (AD DS) and security where a tier model has been implemented – the most recent not older than 2018.
- At least 3 years of experience with Public Key Infrastructure (PKI) in relation to Active Directory Domain Services (AD DS) – as well as Smart Card or Yubikey authentication.
- At least 3 years of technical expertise and understanding of DNS.
- Excellent knowledge of Windows Server and Windows Client, Group Policy, and advanced troubleshooting.
- Good knowledge of authentication/authorization protocols such as NTLM, Kerberos, SAML, OAuth2, and OIDC.
- Good knowledge of network segmentation and IPSec in Windows Firewall (Domain and Server Isolation) and 802.1x.
- Fluent in English, speaking and writing.
- Previous experience in the design, implementation, and troubleshooting of Active Directory Certificate Services (AD CS) is strongly merited.
- Previous experience in the design, implementation, and troubleshooting of Active Directory Federation Services (AD FS) is strongly merited.
- Previous experience with VMware Cloud Foundation (VCF) in relation to authentication and authorization (ESXi, vCenter, vIDM, NSX-T Manager) is strongly merited.
- Knowledge of PowerShell and .NET Framework for automating identity and Active Directory-related tasks (System.Directory Services.).
- Previous experience with IAM solutions & Microsoft Entra ID is strongly merited.
- Previous experience designing solutions for Operational Technology (OT) environments is strongly merited.
- At least 1 year of experience within project(s) involving security-sensitive operations.
- Fluency in Swedish or Finnish in both speaking and writing is strongly merited.
- Great analytical skills, attention to detail, and strong communication skills.
- Curiosity, commitment to development and learning, and adaptability to change.
Tech Stack
- Cloud
- DNS
- VMware
- .NET
Benefits
- A chance to join a team of the Nordic region’s leading experts in Digital Trust, where curiosity is encouraged, and sharing knowledge is a priority.
- Engaging and challenging hands-on assignments, collaborating with large global clients in complex environments.
- A supportive organization that values accountability, while also promoting work-life balance and offering the flexibility to work remotely.
- A comprehensive compensation and benefits package.
- Ongoing opportunities for education and growth.
- Access to Visual Studio Enterprise Subscription and Azure/O365 lab environment, courses and certifications to fuel your curiosity and professional development.