Description
We are looking for a high-caliber Microsoft Systems Administrator to lead the
management, security, and optimization of our identity, productivity, and security stacks.
You will manage our on-premise Active Directory (AD) environment while
simultaneously ensuring optimal use of the advanced features of our Microsoft 365 E5
tenant. You will be a key engineer and guardian of our digital workplace, ensuring that
our suite of tools is perfectly tuned. Your expertise will bridge the gap between high-
level security requirements and seamless end-user experiences, leveraging the
advanced AI and automation capabilities inherent in the Microsoft platform.
Our goal is to seamlessly embed cybersecurity and risk management into every aspect
of our business. We enable business growth through deploying secure solutions,
safeguarding assets, and supporting resilient cyber operations across a distributed plant
environment.
Key Responsibilities
Hybrid Identity & Directory Services
- Manage Active Directory (On-Prem) forest/domain health and complex
Group Policy (GPO) structures. Maintain a Tiered Administrative Model to
prevent privilege escalation
- Expertly manage Microsoft Entra Connect (Sync). Troubleshoot
synchronization errors, manage attribute filtering, and oversee password
hash synchronization (PHS).
- Lead the effort to move legacy on-premise application authentication to
Entra ID.
Security & Compliance
- Deploy and tune the full Microsoft Defender XDR suite (Endpoint, Office
365, Identity, and Cloud).
- Design and enforce sensitivity labels and Data Loss Prevention (DLP)
across the hybrid environment in Microsoft Purview.
- Manage Entra ID features, including Privileged Identity Management
(PIM), Risk-based Conditional Access, and Access Reviews.
Migration, Modernization, and Endpoint Management
- Support the migration of legacy on-premise file shares to SharePoint and
OneDrive
- Enable the transition of device management from GPO-based control to
Microsoft Intune.
- Manage Windows, iOS, and Android devices via Intune, ensuring 100%
compliance with security baselines and automated "Autopilot" deployment.
- Collaborate with other IT team members to develop new practices, and
procedures to remain ahead of cyber adversaries.
- Help evaluate, and recommend additional security technologies, processes, and
methodologies to enhance overall security posture.
Job Requirements
- Bachelor’s degree in cybersecurity, IT, computer science, or a related field
- 5 years of experience in managing a hybrid M365 environment
- Expertise across the Microsoft 365 tool stack: Windows Server 2019/2022, AD,
Group Policy, PowerShell, Entra ID (Azure AD), Entra Connect, Defender,
Purview, Information Protection, Intune, Windows Autopilot, Endpoint Analytics,
SharePoint, OneDrive.
- Excellent communication and teamwork skills.
Desired Qualifications
- Microsoft 365 Certified: Administrator Expert (MS-102); Preferred: Microsoft
Certified: Identity and Access Administrator Associate (SC-300).
- Demonstrated success in leading data and user migrations to M365
- Experience with Operational Technology (OT) systems and manufacturing
environments
