View Job

Cloud Identity Engineer

Bank of America | Jersey City NJ 07399 USA | Full Time | Posted: 03/02/2021

Job Descriptiontop

Job Description:

The Active Directory Engineering team is seeking a Cloud Identity Engineer responsible for analysis, design, implementation coordination and 4th level escalation support, specifically pertaining to integration of on-premise Active Directory with cloud-based solutions, such as Microsoft Azure.

The individual will work within the engineering organization, interacting with peer teams and partner groups, scaling and deploying improvement, facilitating cloud integration efforts of Active Directory identities and services within the enterprise. The candidate must be able to operate and function well in a multi-cultural, geographically dispersed virtual team environment. Strong leadership and communication skills are an absolute must. Ability to balance business expectations while maintaining the security best interests of on-premise Active Directory is of paramount importance.

Primary responsibilities:

• Analysis, design, planning and 4th level support of Active Directory cloud identity solutions

• Translate business needs into workable technology solutions that meet the requirements of internal customers and peer Active Directory Engineering and Operations teams

• Responsible for developing standards, target states, roadmaps, effectively socializing and obtaining consensus across architecture, engineering and operations teams

• Independently manage and perform engineering role for large scale Active Directory cloud identity efforts and initiatives

• Perform various functions and duties in support of audit and compliance deliverables – verification/remittance of evidence

• Develop detailed architecture, standards, design and implementation documentation

• Analyze current Active Directory cloud integration environment to identify both technical and operational challenges while making recommendations and developing solutions for improvement

• Participate in or lead complex or high severity troubleshooting and incident/problem resolutions with other infrastructure teams

Required skills:

• Must have an expert level understanding of Azure AD Connect including previous experience engineering and deploying the solution

• At least 5-10 years of dedicated Active Directory engineering and architecture experience that includes designing, implementing and maintaining complex enterprise level (50K+ objects) Active Directory solutions and security models

• Candidate should have experience where they have maintained Active Directory Enterprise/Domain Admin and/or Azure Global Admin responsibilities

• Extensive experience and advanced knowledge deploying Windows security concepts and least-privilege design principles

• Deep understanding of federation technologies (WS-Fed, OAuth, SAML, etc.)

• Extensive knowledge of Azure security best-practices, latest security threats and mitigation thereof

• Knowledge of Azure MFA integration solutions

• Understanding of Microsoft Azure tenants/subscriptions

• Should have a working understanding of MIIS Metaverse

• Thorough understanding of encryption technologies (both encryption types and protocols/standards)

• Strong working knowledge of Windows 2008, 2012 and 2016 operating systems platforms, DNS, networks, DMZs, firewalls, network security zones and proxies

• Advanced PowerShell scripting experience and capabilities

• Working experience of ITIL framework and enterprise change management processes

• Experience and confidence to be the subject matter expert (SME) in order to coordinate technical efforts and resolve issues across multiple teams in a large scale enterprise environment

• Excellent communication skills, including proven experience effectively communicating technical challenges and solutions to peers, customers and senior management

• Strong risk management skills including confidence to vocalize concerns which may jeopardize integrity of on-premise Active Directory

Desired Skills:

• Knowledge of Ping Identity solutions

• Microsoft Identity Manager (MIM/FIM) conceptual knowledge

• Alternative scripting/programming skills (C#, VBscript, Javascript, Python, Perl)

• Microsoft Azure Advanced Threat Protection (AATP)

• MS SQL/DB knowledge

• Unix/Linux skills; Vintela VAS integration; RedHat IdM

Core Technology Infrastructure Organization:

  • Is committed to building a workplace where every employee is welcomed and given the support and resources to perform their jobs successfully.
  • Wants to be a great place for people to work and strive to create an environment where all employees have the opportunity to achieve their goals.
  • Believes diversity makes us stronger so we can reflect, connect and meet the diverse needs of our clients and employees around the world.
  • Provides continuous training and development opportunities to help employees achieve their career goals, whatever their background or experience.
  • Is committed to advancing our tools, technology, and ways of working to better serve our clients and their evolving business needs.
  • Believes in responsible growth and is dedicated to supporting our communities by connecting them to the lending, investing and giving they need to remain vibrant and vital.

LOB Job Profile:

Leads and/or participates in the design, development, and implementation of complex system engineering activities involving cross-functional technical support, systems programming and data center capabilities. Responsible for components of highly complex engineering and/or analytical tasks and activities. Establishes input/output processes and working parameters for hardware/software compatibility, coordination of subsystems design, and integration of total system. Viewed as a technology subject matter expert; able to provide and communicate complex technology solutions across differing audiences including technical, managerial, business executives, and/or vendors. Will have responsibility for multiple, complex projects; will direct activities of teams related to special initiatives or operations and may have direct reports. Leads the resolution process for complex problems where analysis of situations or data requires an in-depth evaluation of various factors. Exercises judgment within broadly defined practices and policies in selecting methods, techniques, and evaluation criterion for obtaining results. Information Technology degree and/or technology certifications preferred or substantial equivalent experience. Typically 7-10 years of IT experience.


1st shift (United States of America)

Hours Per Week: 


Job Detailstop

Location Jersey City, NJ, 07399, United States
Categories Information Technology

Location Maptop

Contact Informationtop

Contact Name -
How to apply Employer provided a link where your application will be accepted. Click on the link below and follow instructions.
Apply Click Here (apply to job)
Job Code 20056845

Featured Employers - view all