Skip to main content

This job has expired

Active Directory Engineer

Employer
Chicago Public Schools - CPS
Location
Chicago, IL, US
Salary
Competitive

Job Details

The Active Directory Engineer supports the health and overall deployment strategy of the District's Active Directory and Identity Management environments. Candidate must possess expert level knowledge of Active Directory, working knowledge of Google Apps, strong knowledge of automation and scripting technologies, as well as strong experience working with the LDAP Protocol.

Candidate is also responsible for working on large and small scale projects that require interfacing with Active Directory and the district's RapidIdentity Identity Management systems, and must have strong people skills to work with a diverse range of business partners to achieve their goals. Candidate must possess working knowledge of federated authentication technologies, such as Active Directory Federation Services and the SAML 2.0 standard. Knowledge of RapidIdentity is preferred but not required; the Identity Management Team will train the right candidate.

Candidate reports to the Identity and Access Management Manager and advises on changing technologies, the Active Directory and automation strategy, account security remediation and strategies, in-flight projects, and day-to-day operational issues.

The Active Directory Engineer will be held accountable for the following responsibilities:

  • Demonstrate understanding of business processes, internal control risk management, IT controls and related standards.

  • Document, plan, design, develop, test, implement, maintain, and optimize secure, scalable, complex, multi-tier Active Directory and Federated environments using industry best practices.

  • Responsible for supporting the district's Active Directory and associated systems; ensures proper operation of user provisioning and entitlement automation.

  • Monitor and maintain existing account provisioning automation and create new automation as needed using Identity Automation RapidIdentity, System Center Orchestrator, and Powershell scripting.

  • Provide 3rd tier resolution, and interface with Microsoft, Identity Automation, and Google on escalated issues.

  • Develop and maintain system engineering and operations documentation.

  • Advise on standards for integration of new and existing applications with Active Directory, RapidIdentity, and Google.

  • Additional technical project support as necessary



In order to be successful and achieve the above responsibilities, the Active Directory Engineer must possess the following qualifications:

Type of Education Required :

  • BS in Computer Science, Management Information Systems (MIS), or related discipline, or related work experience preferred.



Type of Experience and Number of Years :

  • 3 years experience in developing, implementing or architecting information systems in mid to large sized computing environments (100+ servers, 10,000+ user accounts) preferred.

  • 3-5 years of technical implementation experience integrating identity management, access management and access governance software into clients' directory infrastructure and applications preferred.

  • Experience with systems and design/implementation engineering experience in complex large-scale Windows 2008R2 / 2012R2 / 2016 Active Directory environment preferred.

  • Experience working with Google Apps and supporting technologies a plus.

  • Experience with Identity Automation's RapidIdentity product is a plus.



Knowledge, Skills, and Abilities :

  • Strong working knowledge of the LDAP Protocol, including query construction, Active Directory attribute and schema administration, and performance optimization preferred.

  • Knowledge of industry best practices related to Windows security and server administration is critical.

  • Familiarity with Single Sign On (SSO), identity federation, resource provisioning, and user lifecycle Management Processes preferred.

  • Thorough understanding of Active Directory permissions concepts preferred.

  • Identity & Access Management experience including role based access control, access request and certification is a plus.

  • Understanding of implementing and integrating Software as a Service (SaaS) cloud solutions a plus.

  • Working knowledge of Active Directory 2008R2 / 2012R2 experience required, 2016 is a plus.

  • Strong scripting and automation skills using Powershell and equivalent tools for bulk user provisioning and modification is required.

  • Experience working with development teams, engineers and vendors designing large systems comprised of 250+ servers in lab and production environments.

  • Excellent communication and organization skills are required.

  • Excellent people skills. Must enjoy working with people at all levels of the organization, be customer service focused and thrive in a fast paced environment.

  • Strong documentation and process development skills are a must.

  • Excellent written and verbal communications skills.



Resid ency Requirement:

As a condition of employment with the Chicago Public Schools (CPS), employees are required to live within the geographic boundaries of the City of Chicago within six months of his or her CPS hire date and maintain residency throughout their employment with the district.

Company

Chicago Public Schools is truly a district on the rise. The last five years have been an unprecedented success for CPS, and during that time, our district has emerged as a beacon of what is achievable for large urban school districts across the country. Our mission is to provide a high-quality public education for every child, in every neighborhood, that prepares each for success in college, career, and civic life.

Company info
Telephone
773-553-1000
Location
42 W Madison St
Chicago
IL
60602
US

Get job alerts

Create a job alert and receive personalized job recommendations straight to your inbox.

Create alert