Solution Architect - Network 1

Overview

Hybrid
Depends on Experience
Accepts corp to corp applications
Contract - Independent
Contract - W2

Skills

Active Directory
Database Administration
Disaster Recovery
SMTP
Microsoft SCCM
Microsoft Windows
Microsoft Windows Server 2008
Microsoft Exchange
Email Security
Electronic Discovery
Identity Management
Incident Management
ITIL
High Availability
Help Desk
DNS
DHCP
Microsoft Outlook
PowerShell
Authentication
Collaboration
Communication
Change Management
Legacy Systems
Litigation
Microsoft Azure
Security Management
Testing
VMware

Job Details

The Tri-Com Consulting Group

is a Full-Service IT Employment Consulting Firm who is seeking qualified candidates for the following opening:

Consultant Position: Solution Architect

Deadline for Resumes: July 25, 2025

Anticipated Duration: Twenty-Four Months (contingent upon funding) Scope of Services

The scope of services required for this Solution Architect includes senior-level support for Messaging, Active Directory & Identity management team with an emphasis on Operations security. The candidate will be responsible for security administration of all Active Directory forests and domains and the Microsoft Exchange electronic mail and calendaring platform. The Solution Architect will assist with the tuning and optimization of the Exchange environment ensuring email security and may be involved in migration activities as well as providing high-level support for problem resolution. Also, in scope is providing support and the design of a Microsoft identity management infrastructure in collaboration with Microsoft Azure to fulfill the access and authentication requirements of users for our client.

Background

Our Client s Active Directory and Exchange system has approximately 6,000 active accounts consisting of about 4,500 end user accounts and 1,500 generic and service accounts. Microsoft identity manager 2016 implemented to manage access and identity requirements as well as keeping data integrity intact with legacy data sources.

Our Client s Directory environment consists of three directory forests. The internal forest contain accounts for Branch employees as well as directories for resources such as conference rooms and service accounts. One of the two external forests contains accounts for employees of other branches and resources shared between our client and other branches. The other external forest contains resources available from the Internet. In total, there are between 13,000 and 14,000 accounts across all the Active Directory forests maintained by our client.

Our Client s Microsoft Exchange organization consists of over 80 mailbox databases replicated using an Exchange database availability group (DAG). The Active-Active Exchange nodes are hosted on VMware virtual servers, with nodes in our primary data center and alternate Processing Center (APC) servicing users simultaneously. Mailbox compliance requirements for the branch include mailbox auditing and process drive Litigation hold practices. Email encryption is a key component of what the branch offers to the users encrypting keyword based end to end encryption for secure email exchange. Two Cisco IronPort appliances provide anti- malware and anti-spam filtering for the branch.

System center configuration manager is deployed to address needs for security patching for all infrastructure servers every active directory forests. A number of auditing policies and products are deployed to address the branch s security and compliance requirements. The ideal candidate would be expected to contribute immediately in two distinct areas with demonstrated technical experience as summarized below.

Duties

  1. Expert level Windows 2019/2016 Active directory and domain controller design, implementation and administration
  2. Expert level health and performance monitoring of a Microsoft Exchange environment and all its components and Take preventive or corrective action as needed to maintain system availability and performance standards
  3. Monitor logs, message flows, queues, quotas, storage and other resources taking appropriate preventive or corrective action as needed
  4. Manage and administer the e-mail data stores and database availability groups (DAGs) to deliver optimal performance and availability
  5. Develop process and adhere to eDiscovery and Litigation hold requests
  6. Respond to escalated helpdesk tickets, resolve system and user problems and provide assistance as needed
  7. Expert level ongoing support and architecture planning for Microsoft Identity manager 2016 codeless environment following all best practices from Microsoft
  8. Work with legacy application owners to integrate their data into the Microsoft IDM metaverse and flow into Active directory
  9. MIM group management, password portal, integration with SQL management agents and ADFS
  10. Expert level knowledge on deploying and architecting System center configuration manager SCCM version 1902
  11. Audit, test, schedule and install patches using SCCM and other operating system components as well as upgrades to Exchange servers as needed
  12. Administer MIM 2016, Microsoft Exchange and Active Directory high availability, disaster recovery, backup and restoration of the entire system as well as individual components such as files and end user mailboxes
  13. Experience with performance tuning for Active directory, Exchange server and Microsoft MIM environments in a 24 x 7 environment
  14. Develop, implement and document configuration standards, policies and procedures for managing, operating, and ensuring the security of the MIM 2016, Exchange & Active Directory infrastructure
  15. Manage Outlook Web App (remote mail access), mail routing protocols, relays, gateways, email encryption and security, interfaces and transports to external mail systems and provide support for mobile devices and phones
  16. Administer the mail system anti-spam, anti-virus appliances (IronPort)
  17. Expert level knowledge in auditing and managing Palo Alto TRAPS and MalwareBytes antivirus products for all servers
  18. Experienced with working in CritSit (critical situation) such as data breach, malware/ransomware attack and disaster recovery with minimal or no supervision
  19. Experience and expert level knowledge in implementing multi-factor authentication for users for applications such as webmail and other federated apps
  20. Manage Branch-wide standards for Exchange, AD and Identity Management
  21. Availability for 24x7 on-call support

The duties required of this position requires strong knowledge and expertise with designing, implementing, and supporting the following technologies:

  • Active directory
  • Microsoft Exchange server 2016/2019 Windows Server 2008 R2, 2012, 2016 and 2019 Microsoft Identity manager 2016
  • System center configuration manager (SCCM) Cisco IronPort email gateway
  • Email encryption products Infrastructure auditing products Active directory federation services Office 365 Tenant configuration Office 365 Hybrid configuration
  • Access Control and Conditional Access (CA) Azure Active Directory (AAD) and AAD Connect Password Hash sync
  • Microsoft Federation Integration with Office 365, Azure and Identity Management Multi Factor Authentication (MFA) with Azure
  • Advance Threat Protection (ATP) policies Palo Alto TRAPS administration MalwareBytes cloud deployment

Qualifications and Certifications:

In addition to the general qualifications of the contract, the skills and experience levels required for a candidate to be considered for this position are listed below.

  1. 10+ years of Expert level direct hands-on Microsoft Exchange and Active Directory administration experience
  2. 5+ years of Microsoft identity manager, SCCM and email security experience
  3. Strong understanding of SMTP e-mail flow and related transport/DNS configuration
  4. Experience with server virtualization technology including configuring and managing virtual servers preferably in a VMware environment
  5. Strong understanding of AD forests, domains, trusts, DHCP, DNS and group policy as it relates to Active directory
  6. Experience configuring and managing high-availability server environments using local and remote clustering and network load balancing technologies
  7. Scripting experience in languages such as PowerShell
  8. Experience developing and testing offsite disaster recovery plans
  9. Excellent written and verbal communication skills
  10. Proven ability to work independently as well as with others, with minimal supervision
  11. Adhere to change management, incident management and problem management practices to ensure all activities are executed as per process

Required/Preferred Certifications:

  • Microsoft Certified Solutions Expert
  • O365 Enterprise AdministratorExpert
  • Microsoft 365 Certified Messaging Administrator Associate Microsoft Certified Professional
  • Microsoft Exchange 2016 certification ITIL V3

Work Schedule

The position requires 40 hours per week, with a normal start time between 7:00 AM and 8:00 AM in East Hartford. Availability for after-hours on-call service will be required as needed for system emergencies. Scheduled weekend work will be required periodically for maintenance and upgrades.

~Tri-Com is an Affirmative Action/Equal Opportunity Employer~

We strongly encourage the applications of women,

minorities, persons with disabilities, and military veterans.

As a condition of employment you will be required to pass a drug screening and other background checks including past employment and confirmation of technical certifications.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.