We are looking to bring in a contract engineer with strong Active Directory and DNS/DHCP expertise who also has solid, hands-on Infoblox experience. Because Infoblox is deeply integrated with our AD and DNS environment, these skill sets go hand in hand — and we need someone who can work confidently across both.
Required
· Strong Active Directory expertise — multi-domain/forest environments, OU design, Group Policy, AD replication, Sites and Services, FSMO roles, and AD-integrated DNS/DHCP.
· Azure AD / Entra ID experience — hybrid identity configuration (Azure AD Connect / Cloud Sync), conditional access, MFA, and tenant administration.
· Solid, hands-on Infoblox experience — NIOS administration, grid architecture, DDI management, and ideally physical-to-virtual migration on VMware. This is not a “nice to have”; without Infoblox depth, the candidate will not be able to deliver on the near-term migration work.
· DNS/DHCP architecture depth — enterprise DNS design, DNSSEC, DHCP scoping, and IP address management concepts.
· Working knowledge of VMware — VM deployment, snapshots, resource allocation, and basic networking from an appliance operations standpoint. We are not looking for a deep virtualization engineer.
· Strong Windows Server fundamentals — core infrastructure services, server administration, and interoperability with directory and DDI services.
· Documentation and communication skills — ability to produce clear architecture diagrams, runbooks, and training materials, and to work across teams (network, AD, virtualization) following established change control processes.
Preferred
· Microsoft Certified: Identity and Access Administrator Associate or equivalent AD/Azure certification.
· Infoblox Certified Professional or equivalent vendor certification.
· Experience with Anycast DNS, Global Server Load Balancing (GSLB), or similar DNS resilience technologies.
· Familiarity with identity governance concepts: privileged access management, identity lifecycle, access reviews.
· Experience with automation and scripting (PowerShell, Infoblox WAPI, Ansible, Terraform).
· Experience with Microsoft Defender for Identity, Azure AD Identity Protection, or similar tools.
· Prior consulting or professional services engagement experience with structured deliverables.