Who We Are:Our team, the Cloud Services team within the Information Technology Center, is responsible for EntraID (formerly Azure)/M365 cloud services and Active Directory for the Enterprise. The team provides support and implementation services to the entire organization's IT infrastructure.
Objectives of this Role: - Provide expert administrative support for Active Directory (AD) and Azure cloud infrastructure to ensure seamless operation and performance across the enterprise.
- Manage and troubleshoot PKI (Public Key Infrastructure) and AD FS (Active Directory Federation Services) to maintain secure access to enterprise resources.
- Develop, implement, and maintain Azure-based solutions to optimize and secure cloud infrastructure.
- Collaborate across IT teams to resolve helpdesk tickets related to AD, Azure, and associated systems.
- Play a critical role in Active Directory migrations, including planning, execution, and post-migration support.
- Research and implement best practices for identity and access management, Azure infrastructure governance, and operational scalability.
Daily and Monthly Responsibilities: - Perform advanced administration of Active Directory (AD) and Azure cloud environments by managing user accounts, enforcing security configurations, and monitoring directory synchronization across hybrid infrastructures.
- Mentor and share knowledge with junior IT team members,
- Address and resolve daily helpdesk tickets related to account provisioning, identity and access issues, and directory synchronization.
- Administer and maintain PKI systems, ensuring certificate creation, renewal, and security compliance.
- Support and troubleshoot AD FS (federation services) to maintain secure user authentication and single-sign-on capabilities.
- Deploy, configure, and support components of Azure infrastructure, including resource groups, conditional access policies, Azure virtual desktops, and security configurations.
- Conduct regular audits of Active Directory and Azure environments to detect, address, and mitigate potential security vulnerabilities.
- Create and maintain documentation related to processes, configurations, and governance policies.
Requirements: - Requires a Bachelors degree in Information Technology or related degree field with relevant experience. In lieu of a Bachelors degree, 5 years of professional level experience with related certifications will be considered.
- 3 years: Experience with Active Directory administration, including management, troubleshooting, and migrations. Solid experience with Group Policy Objects (GPO) design, implementation, and troubleshooting.
- 1 years: Proven experience delivering secure, high-availability solutions related to Azure and on-premises directory services.
- 1 years: Hands-on experience with Active Directory Federation Services (AD FS) for managing secure authentication and Single Sign-On (SSO) configurations and Familiarity with Public Key Infrastructure (PKI) systems, including creating, renewing, and troubleshooting certificates.
- Technical Certifications such as Microsoft Certified Solutions Associate (MCSA) and/or Microsoft Certified Solutions Expert (MCSE) or Microsoft Certified: Azure Administrator Associate, Azure Fundamentals or equivalent are preferred.
- A valid/clear driver's license is required.
Special Requirements:Applicant selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information.
Job Locations: San Antonio, TexasFor benefits information at our San Antonio location, click here .
For benefits information at all other locations, click here .
An Equal Employment Opportunity Employer: race, color, religion, sex, national origin, disability, and veteran status.