New Era Technology NZRemote
Client Dedicated - Microsoft Cloud Security Engineer
United States
Full-time
1 week ago
H1B Sponsor Likely
Key skills
Microsoft 365 AdministrationEntra ID AdministrationPowerShellPythonAzureWindows ServerPlanningOrganizingCommunication SkillsDetail OrientedIAMLogic AppsAzure ADEntra IDLDAPActive DirectoryIdentity ManagementCommunicationCloud SecurityZero Trust
About this role
New Era Technology is a company dedicated to creating a supportive workplace where employees can thrive. The Microsoft Cloud Security Engineer is responsible for administering and optimizing Microsoft 365 services and ensuring security and compliance across the Microsoft ecosystem.
Responsibilities:
- Manage and optimize Exchange Online, SharePoint, Teams, OneDrive, and related applications
- Oversee user accounts, permissions, licenses, and service health
- Implement security and compliance policies, including DLP and retention
- Administer Entra ID (Azure AD), including identity governance, privileged access management (PIM), and synchronization with on-premises AD
- Support hybrid identity scenarios and enforce zero trust principles
- Administer and maintain on-premises Active Directory (AD) environments, including directory services (ADDS), authentication (LDAP/Kerberos), and group policy management
- Oversee Windows Server infrastructure supporting AD, ensuring health, replication, and security of domain controllers
- Configure and manage Microsoft Entra Connect or Cloud Sync to synchronize identity data between on-premises AD and Microsoft Entra ID
- Ensure secure provisioning and deprovisioning of user accounts and groups in AD and Entra ID and business applications
- Support privileged identity management (PIM) in Entra and Delinea Secret Server
- Document and optimize hybrid identity workflows, collaborating with security and compliance teams to enforce best practices
- Develop and maintain integration workflows using PowerShell and Python
- Automate provisioning, reporting, and compliance tasks
- Support custom application integrations and API-based automation
- Configure and monitor Microsoft Defender for Identity, Defender for Cloud Apps, and Purview
- Respond to security incidents, perform risk assessments, and ensure regulatory compliance
- Document and optimize IAM and service administration processes
- Lead projects to integrate new technologies and improve operational efficiency
- Provide technical support and training to end-users and IT teams
- Coordinate with vendors and internal teams for troubleshooting and enhancements
Requirements:
- Bachelor's degree in Computer Science, Engineering, Information Systems (or related degree), or equivalent experience
- Strong understanding of Windows, Azure, and Microsoft 365 technologies
- 3+ years of experience in the IAM field and/or software development with a minimum of 1 year in Microsoft AD, ADFS, Entra ID, and Azure B2C
- Strong development or scripting skills (PowerShell, Python, Azure Logic Apps and Functions)
- Ability to cope in a technically complex and fast-changing environment and to respond calmly and rationally to changing aspirations in a deadline-driven situation
- Strong planning and organizing skills including the ability to manage several work streams simultaneously
- Excellent communication skills with a capacity to present, discuss, and explain issues coherently and logically both in writing and verbally
- Clear decision-making ability with the facility to judge complex situations and assess when to escalate issues
- Must be detail oriented, outgoing, can balance conflicting and changing demands through prioritization and a pragmatic approach working with all levels of corporate personnel
- Ability to work non-traditional hours to support on call escalation issues to provide 24X7 service availability
- Ability to manage multiple priorities as well as flexibility to adapt to change with new systems and methods while working in a team environment
- Flexibility to travel when required