Key skills
PowerShellAzureAzure ADEntra IDLDAPActive DirectoryIdentity ManagementProject ManagementChange ManagementCommunicationZero Trust
About this role
Classification: Contract
Contract Length: 12-months
Position Summary
We are seeking a highly skilled Systems Engineer with deep expertise in Active Directory (on-premises and cloud) to design, implement, secure, and maintain enterprise identity and infrastructure platforms. This role will also support Windows Server engineering and VMware virtualization, ensuring high availability, security, and performance across hybrid environments.
The ideal candidate has strong troubleshooting skills, a security-first mindset, and experience operating in complex, multi-domain or hybrid cloud environments.
This position will interact daily with Project Management Teams, Product Development, Business Partners, Vendors, and CereCore team members, as well as the end users on delivering system engineering solutions to meet client’s business requirements. Strong customer service, written and oral communications skills for working with external clients will be required. Project delivery and problem management skills are required to effectively meet CereCore business objectives and exceed client expectations.
Responsibilities
- Minimum of 5 years of experience in a relevant role
- Design, deploy, and maintain on-premises Active Directory environments (multi-domain/forest, trusts, GPOs, DNS, DHCP).
- Manage hybrid identity solutions including Azure AD / Entra ID, Azure AD Connect, cloud sync, and federation (AD FS where applicable).
- Implement and maintain identity security controls such as tiered administration, least privilege, privileged access management, and conditional access.
- Perform AD health monitoring, replication troubleshooting, metadata cleanup, and disaster recovery planning.
- Manage authentication and authorization services including Kerberos, NTLM, LDAP, and certificate-based authentication.
- Perform daily and weekly backups of Active directory both On-Prem and in the Cloud for Disaster Recovery.
- Manage vulnerability scans and remediations of the Active Directory environments.
- Engineer and support Windows Server environments (2016/2019/2022).
- Manage patching, hardening, baselines, and compliance using industry best practices and security frameworks.
- Develop and maintain Group Policy Objects (GPOs) for servers and workstations.
- Automate administrative tasks using PowerShell.
- Support Windows failover clustering, file services, and core infrastructure services
- Respond to incidents affecting identity, authentication, and core infrastructure services.
- Participate in security audits, vulnerability remediation, and post-incident reviews.
- Create and maintain technical documentation, diagrams, and standard operating procedures.
- Work closely with security, networking, and cloud teams to support enterprise initiatives.
- Understanding of Project Management and problem management skill sets
- Meet IT&S change management and project management requirements
- ITIL Knowledge
- Moderate travel (up to 50%) for analysis and upgrades
- This is a Work From Home position, candidate must provide his/her own high-speed, reliable Internet connectivity
Requirements
- Advanced knowledge of Windows Server administration and engineering.
- Proven experience supporting VMware vSphere environments.
- Strong PowerShell scripting and automation skills.
- Solid understanding of identity security concepts and best practices
- Experience with Zero Trust, Conditional Access, or Privileged Identity Management (PIM).
- Familiarity with Microsoft Defender, Sentinel, or identity-related security tooling.
- Experience in healthcare, financial, or other regulated environments.
- Certifications desired such as: Microsoft (AZ-800/801, SC-300, AZ-104)
- VMware (VCP)
- CompTIA Security+ or equivalent
- Strong analytical and troubleshooting abilities
- Excellent documentation and communication skills
- Ability to work independently and collaboratively in high-impact environments