M365 Exchange Engineer

IKCON TECHNOLOGIES INC delivers exceptional IT services and solutions that provide clients with definite edge over competitors and promoting highest standards of quality. We are currently looking for a M365 Exchange Engineer with one of our clients in Remote. If you are actively looking for opportunities, please send us your updated resume with your contact details.

"U.S. Citizens and those authorized to work in the U.S. are encouraged to apply."

JOB DESCRIPTION

Active Directory, Exchange and M365 administrator

The Senior Systems Engineer is primarily responsible for the administration and operation of the firm's complex Microsoft 365 services with primary focus on core platforms like Email, Power Platform, Identity and MS Entra ID Infrastructure setup. This role requires in-depth knowledge of MS Exchange on-prem and online, Active Directory, Mimecast, PowerShell and a good understanding of Entra connect, Entra AD Conditional Access and other related O365 technologies (SPO, Teams, One Drive, etc.). The ideal candidate is expected to be skilled at troubleshooting, be a self-starter, and demonstrate experience in managing projects to completion.

RESPONSBILITIES

• Exchange On-Prem and Exchange Online Administration
  • Ensure email services are stable, secure, and available across various Business Units (BU's) at Arch:
  • Installing Exchange and setting up Exchange orgs from scratch or upgrading from MS Exchange 2013 to 2016 to 2019 .
  • Support multiple Hybrid Exchange environments syncing to one Multi Geo O365 tenant.
  • Perform mailbox data migrations during Merger and acquisition or internal transfer of employees.
  • Develop strategic plans for Mail flow routing, Journaling, Email retention policies, Role based access control, etc.
  • Support merger and acquisitions to lead complex Exchange, O365 tenant and AD integrations/migrations.
  • Troubleshooting complex Mail flow scenarios to resolve P1/P2 tickets across various technologies.
  • Review and suggest strategic improvements

• Active Directory
  • Plan and Deploy AD Sites and Services, Promote/Demote Domain Controllers
  • AD user migration using ADMT and Quest
  • Support Multiple AD forests and trust between them
  • Automate AD health checks, Identity Lifecyle management, etc.
  • Setup, configure and administer Quest Change auditor
  • Setup and review AD health assessments to remediate any Vulnerabilities
  • Setup and support Active Directory Certificate Services.
  • Troubleshoot AD replication and Entra connect sync issues
• O365/Entra AD
  • Setup and troubleshoot Entra Conditional access policies
  • Configure Privileged Identity Manager to administer various AAD Roles
  • Create enterprise apps to setup SSO with third party vendors.
  • Setup Multifactor Authentication
  • Assign/reassign various O365 licenses and enable relevant services within the O365 licenses
  • Create and manage service principals and OAuth app registrations
• Email Gateway (Mimecast) Administration:
  • Build new Mimecast tenant with standard gateway configuration.
  • Develop and manage email gateway policies
  • Work in co-ordination with Mimecast and corporate information security to improve security posture.
  • Document standards and schedule KT sessions with service desk teams.
• Automation
  • Develop PowerShell scripts to help automate routine tasks, monitor and generate reports on various workloads (EXO, Azure AD, Teams, SPO, O365 licensing, etc.).
  • Working experience with GitHub and YAML configuration.
  • Terraform experience a plus
• Develop processes and procedures to ensure managed environments maintain the highest levels of availability, security, and quality.
• Follow all set procedures to the change management system
• Develop capacity forecasts for managed environments and prevent problems prior to outages
• Serve as an escalation point and provide guidance and direction for the resolution of escalated issues and/or complex production, application or system problems
• Must be able to accommodate schedule flexibility to deal with escalations and occasional changes during non-core business hours

Required Skills/Experience

• A minimum of 5 years of relevant experience supporting Microsoft Exchange On-Prem and Exchange Online
• 5+ years of relevant practical experience managing/troubleshooting email Gateway solutions, Mimecast preferred.
• 5+ years of strong PowerShell automation and advanced active directory experience
• Knowledge of Kerberos, LDAP, Active Directory, ADFS, DNS, DHCP.
• Very good knowledge of Azure AD, Conditional Access, MFA, O365 licensing etc.
• Expert knowledge of Windows servers, Active Directory, ADFS, GPOs in a Windows Server 2012 R2 and 2016 environment

Desired Skills/Experience

• Ability to effectively plan, facilitate, and participate in meetings with employees from all organizational levels
• Effectively use teamwork to contribute to a high morale/high-performance team culture, leading by example
• Demonstrate the ability to work in an open way, willingness to share knowledge and resources and to educate others within a global team
• Effective team player and collaborator
• Strong skills in prioritization and reprioritization to react to a dynamic environment as Arch continues to evolve
• Excellent interpersonal and communication skills, including strong listening skills
• Ability to effectively communicate business and technical information to audiences with varying backgrounds
• Ability to communicate with offshore teams and technical development teams
• Good documentation and presentation skills
• Ability to interact with management in a professional manner

Education

• Technical degree or certifications preferred but not required
• Industry specific training or designation a plus