FreshRemote.Work
Sign in

IAM Active Directory Entra ID Architect

USCA - USA - Colorado - Remote, United States

VF Corporation logo
Company preview All jobs at VF Corporation
Apply Job profile

We are seeking a highly experienced IAM Active Directory Entra ID architect to join our dynamic team and lead our identity and access management initiatives.  The architect will be responsible for the scope, assessment, design, testing, and technical documentation for the implementation, support, and security of identity solutions. The architect will possess and maintain expertise in Microsoft Azure AAD (Entra) and Active Directory platforms utilizing the knowledge to address business requirements.

Responsibilities:

  • Lead the evaluation, design, and development of Active Directory & Azure Active Directory technical requirements, solutions, and implementation roadmap to ensure functional, reliable, secure, and cost-effective technology environment.

  • Develop and enforce IAM policies, standards, and procedures to ensure compliance with regulatory requirements and industry best practices.

  • Ensure continuous improvement within the IAM security architecture by introducing and implementing emerging security technologies and practices.

  • Provide to global project and operational teams technical advice, guidance, expertise, and risk analysis on your area of expertise.

  • Translate requirements into an Architectural design and influence the deployment of key infrastructure components.

  • Maintain a thorough understanding of existing and emerging Microsoft Entra ID and related core technologies.

  • Analyze current Azure Active Directory environment to identify both technical and operational challenges while making recommendations and developing solutions for improvement.

  • Maintain and optimize on-premises Active Directory (AD) infrastructure, including DNS, GPOs, and domain controllers.

  • Participate in or lead complex or high severity troubleshooting and incident/problem resolutions with other infrastructure teams.

  • Evaluate and ensure the resolution of technically complex security issues, internal control issues, critical incidents and/or crisis resolution management, escalating as necessary.

  • Implement and enforce Multi-Factor Authentication (MFA) and security best practices across user accounts and devices.

  • Develop and manage integrations using the Microsoft Graph API for automation and custom applications, enabling advanced capabilities across Microsoft 365 services.

  • Create custom scripts to automate administrative tasks and data retrieval from the Graph API, enhancing operational efficiency.

  • Write and maintain Advanced PowerShell scripts to automate user and resource provisioning, reporting, and service configurations across Entra ID and Active Directory

  • Implement and maintain security best practices.

Requirements:

  • Bachelor’s degree in Computer Science, Information Technology, or a related field.

  • 10+ years of relevant working experience in IT Security and IT Architecture

  • 7+ years of experience with Active Directory architecture and infrastructure, with an in-depth understanding of Active Directory Replication, DNS, Site Links, Site Topology, Group Policy, Global Catalogs, and other core infrastructure components.

  • 3+ years of experience with Azure Active Directory architecture and design

  • 5+ years of experience with Identity and Access Management (IAM) processes and technologies

  • Proven expertise in designing and implementing IAM solutions in complex environments preferably Saviynt.

  • Expertise in managing Azure AD/Entra, including Conditional Access, MFA, security best practices, hybrid environments, GPO's, On-Premises Active Directory Migrations and Azure AD Connect.

  • Experience with Microsoft Graph API for data retrieval and automation across Azure AAD.

  • In-depth knowledge of identity governance, authentication, authorization, and federation. Including MFA, SSO and PAM

  • Understanding of federation technologies (WS-Fed, OAuth, SAML, etc.)

  • Enterprise/Domain Admin and/or Azure Global Admin responsibilities

  • Proven knowledge in managing Active Directory 2016/2019/2022 infrastructure for the Enterprise.

  • Strong experience in PowerShell and Microsoft Graph API is required.

  • Knowledgeable of Microsoft Security Stack: Defender for Office 365, Defender for Identity, Defender for Cloud Apps, Entra ID, Microsoft Purview Information Protection, Data Loss Prevention and Compliance Center Experience including – Litigation Hold, Retention, and eDiscovery.

  • Strong communication and interpersonal skills, with the ability to collaborate effectively with stakeholders at all levels.

  • Relevant certifications such as CISSP, CISM, or Microsoft Certified: Identity and Access Administrator Associate are considered an asset.

 

Deadline to apply- Accepting applications on an ongoing basis.

Hiring Range:

$116,000.00 USD - $145,000.00 USD annually

Incentive Potential: This position is eligible for additional compensation awards that may include an annual incentive plan, sales incentive, or commission potential. Specific details of the additional compensation eligibility for this position will be provided during the recruiting and interview process.

Benefits at VF Corporation: You can review a general overview of each benefit program offered, including this year's medical plan rates on www.MyVFbenefits.com  and by clicking Looking to Join VF? Detailed information on your benefits will be provided during the hiring process.

Please note, our hiring ranges are determined and built from market pay data. In determining the specific compensation for this position, we comply with all local, state, and federal laws.

At VF, we value a diverse, inclusive workforce and we provide equal employment opportunity for all applicants and employees. All qualified applicants for employment will be considered without regard to an individual’s race, color, sex, gender identity, gender expression, religion, age, national origin or ancestry, citizenship, physical or mental disability, medical condition, family care status, marital status, domestic partner status, sexual orientation, genetic information, military or veteran status, or any other basis protected by federal, state or local laws.  If you are unable to submit your application because of incompatible assistive technology or a disability, please contact us at peopleservices@vfc.com. VF will reasonably accommodate qualified individuals with disabilities to the extent required by applicable law.

Pursuant to all applicable local Fair Chance Ordinance requirements, including but not limited to the San Francisco Fair Chance Ordinance, VF will consider for employment qualified applicants with arrest and conviction records.

Apply

Job Profile

Regions

North America

Countries

United States

Restrictions

Fully remote USCA

Benefits/Perks

Fully remote Medical

Tasks
  • Automate administrative tasks
  • Create custom scripts for automation
  • Develop and enforce IAM policies
  • Develop integrations using Microsoft Graph API
  • Ensure compliance
  • Ensure compliance with regulations
  • Evaluate and improve Active Directory environments
  • Guide project teams
  • Implement security best practices
  • Lead IAM architecture design
  • Manage on-premises and cloud directory services
  • Reporting
  • Troubleshoot security issues
Skills

Active Directory Active Directory Replication Authentication Authorization Automation Azure Active Directory Communication Computer Conditional Access Continuous Improvement Crisis Management Data Retrieval DNS Federation Global Catalogs GPO Group Policy Hybrid Environments IAM Identity and Access Management Identity Governance Incident Resolution Interpersonal Loss prevention Microsoft Azure Microsoft Entra Microsoft Graph API Multi-factor authentication On-Premises Active Directory Operational Efficiency PAM PowerShell Recruiting Reporting Risk Analysis Sales Security Best Practices Security Technologies Site Topology SSO Technical Documentation Troubleshooting

Experience

10+ years

Education

Bachelor's degree in Computer Science Business Computer Science Information Technology Related Field

Timezones

America/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9

Remote Jobs in North America Remote Jobs in Europe Remote Jobs in Asia/Pacific Remote Jobs in South America Remote Jobs in Africa Remote Jobs in Middle East Full Time Remote Jobs Part Time Remote Jobs Contract Remote Jobs Internship Remote Jobs Temporary Remote Jobs Freelance Remote Jobs Mid-Level Remote Jobs Senior-Level Remote Jobs Entry-Level Remote Jobs Exec-Level Remote Jobs Lead-Level Remote Jobs
Remote Senior Manager Jobs Remote Contract Jobs Remote Strategy Jobs Remote Engineer I Jobs Remote Platform Jobs Remote Technician Jobs Remote Marketing Manager Jobs Remote Coordinator Jobs Remote Assist Jobs Remote Program Manager Jobs Remote Project Manager Jobs Remote Assistant Jobs Remote Counsel Jobs Remote Hybrid Jobs Remote Customer Success Jobs Remote Engineer II Jobs Remote Admin Jobs Remote Analytics Jobs Remote Growth Jobs Remote Scientist Jobs
Remote Jobs with PHP > 300K in Salary Remote Jobs with EUR > 100K in Salary Remote Jobs with GBP > 140K in Salary Remote Jobs with CAD > 140K in Salary Remote Jobs with GBP > 160K in Salary Remote Jobs with GBP > 180K in Salary Remote Jobs with GBP > 200K in Salary Remote Jobs with CAD > 160K in Salary Remote Jobs with GBP > 220K in Salary Remote Jobs with GBP > 240K in Salary Remote Jobs with EUR > 120K in Salary Remote Jobs with CAD > 180K in Salary Remote Jobs with PLN > 40K in Salary Remote Jobs with PLN > 60K in Salary Remote Jobs with PLN > 80K in Salary Remote Jobs with PLN > 100K in Salary Remote Jobs with CAD > 200K in Salary Remote Jobs with PLN > 120K in Salary Remote Jobs with EUR > 140K in Salary Remote Jobs with PLN > 140K in Salary