This site uses cookies. To find out more, see our Cookies Policy

IAM Active Directory Azure Architect/Engineer - Remote in Charlotte, NC at Vaco

Date Posted: 5/30/2018

Job Snapshot

Job Description

At Vaco, we help you get the advantage over your competition. We partner with companies to fill their IT recruiting needs. Currently, we have an excellent opportunity for a IAM Cloud AD Engineer/Architect with a leading company. Apply with Vaco, and your recruiter will get to know you and that way promote your strengths and assets directly with the hiring manager. We will help prepare you for your interviews by providing insight and insider company information.

Our recruiters will follow up with you and provide you with access to market trends, compensation expectations, company culture and career growth opportunities that are perfect for you! Find the next step up in your career through Vaco today!

Background: We are migrating over 150 external sharing sites from support central (internal application) to Sharepoint online with over 3,600 guest users that required sponsorship and workflow within AD azure. We will also have up to 4,000 internal users with internal AD credentials that will sync via our ADFS environment to AD Azure to gain access to SharePoint online as part of this effort as well . We need to develop ongoing processes to approve, manage, terminate and certify AD azure guest user (Microsoft B2B) identities, while setting up these identities within AD azure as it relates to this project. Our internal users will be licensed via a licensing process from AD through ADFS to AD Azure. We will also need to develop a process to extract and/or certify Sharepoint online access to each object type on a periodic basis, as part of this setup. We are also moving forward with a CASB solution that will integrate to O365. We are lacking critical expertise within the team to help get this sponsorship process stood up within AD Azure and Sharepoint Online. In 2019 we will be moving to exchange online, Sharepoint internal to Sharepoint online, intune, etc. We are looking for someone that has experience:

* Understanding O365 Authentication / Authorization models within licensing models including sponsorship, certification and workflows for internal users and guest users (B2B)
* Hands on to develop the workflow or forms supporting IAM model for sponsored guest users and administration of the AD azure for a tenant. Nintex expertise may be needed for the workflow development.
* AD Azure administration (policies, management, APIs, data extract) to ensure the platform meets our logical access and password standards.
* Understanding of CASB (Cloud Access Security Broker) capability and integrations with O365. Right now we are looking at Symantec's CASB solution for deployment.
* Desired/Not Required: ADFS Environment Support / Enhancement. We have an ADFS environment that has limited expertise on our AD team today that will be crucial for our O365 journey to be successful.


  1. Architect Jobs
  2. Systems Engineer Jobs