Microsoft Systems Administrator
About The Position
We are looking for a high-caliber Microsoft Systems Administrator to lead the management, security, and optimization of our identity, productivity, and security stacks. You will manage our on-premise Active Directory (AD) environment while simultaneously ensuring optimal use of the advanced features of our Microsoft 365 E5 tenant. You will be a key engineer and guardian of our digital workplace, ensuring that our suite of tools is perfectly tuned. Your expertise will bridge the gap between high- level security requirements and seamless end-user experiences, leveraging the advanced AI and automation capabilities inherent in the Microsoft platform. Our goal is to seamlessly embed cybersecurity and risk management into every aspect of our business. We enable business growth through deploying secure solutions, safeguarding assets, and supporting resilient cyber operations across a distributed plant environment.
Requirements
- Bachelor’s degree in cybersecurity, IT, computer science, or a related field
- 5 years of experience in managing a hybrid M365 environment
- Expertise across the Microsoft 365 tool stack: Windows Server 2019/2022, AD, Group Policy, PowerShell, Entra ID (Azure AD), Entra Connect, Defender, Purview, Information Protection, Intune, Windows Autopilot, Endpoint Analytics, SharePoint, OneDrive.
- Excellent communication and teamwork skills.
Nice To Haves
- Microsoft 365 Certified: Administrator Expert (MS-102); Preferred: Microsoft Certified: Identity and Access Administrator Associate (SC-300).
- Demonstrated success in leading data and user migrations to M365
- Experience with Operational Technology (OT) systems and manufacturing environments
Responsibilities
- Manage Active Directory (On-Prem) forest/domain health and complex Group Policy (GPO) structures. Maintain a Tiered Administrative Model to prevent privilege escalation
- Expertly manage Microsoft Entra Connect (Sync). Troubleshoot synchronization errors, manage attribute filtering, and oversee password hash synchronization (PHS).
- Lead the effort to move legacy on-premise application authentication to Entra ID.
- Deploy and tune the full Microsoft Defender XDR suite (Endpoint, Office 365, Identity, and Cloud).
- Design and enforce sensitivity labels and Data Loss Prevention (DLP) across the hybrid environment in Microsoft Purview.
- Manage Entra ID features, including Privileged Identity Management (PIM), Risk-based Conditional Access, and Access Reviews.
- Support the migration of legacy on-premise file shares to SharePoint and OneDrive
- Enable the transition of device management from GPO-based control to Microsoft Intune.
- Manage Windows, iOS, and Android devices via Intune, ensuring 100% compliance with security baselines and automated "Autopilot" deployment.
- Collaborate with other IT team members to develop new practices, and procedures to remain ahead of cyber adversaries.
- Help evaluate, and recommend additional security technologies, processes, and methodologies to enhance overall security posture.
Benefits
- full benefits package including medical, dental, vision, life, disability, 401(k) with company match, paid vacation, paid holidays, and parental leave
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
