Production Support Analyst (Sr. Infrastructure Ops Analyst)

A Senior Infrastructure Operations Analyst on the Identity Access Management team secures digital identities by designing, implementing, and managing access policies, user lifecycles (onboarding/offboarding), and authentication systems. This requires advanced identity management domain expertise and related security disciplines. The position leads high?profile initiatives, applies rigorous analysis to deliver innovative solutions, and establishes identity management standards across the organization. This role is an individual contributor who will be required to work closely with others to influence technical direction in this discipline and partner on the implementation of solutions. The candidate must have experience in the following areas:

• Access Governance: Define and manage user access roles, permissions, and entitlements based on the principle of least privilege.
• Identity Lifecycle Management: Understanding all aspects of Identity - Human, Machine, and Agent/Application.
• System Administration: Maintain IAM platforms (e.g., Entra ID, Venafi, MS ADCS) and directory services.
• Security & Compliance: Perform access reviews, audit logs for unauthorized access, and ensure compliance with regulatory standards (e.g., PCI, GDPR).
• Authentication Protocols: Implement and support Certificate-based authentication, SCEP, Intune, Single Sign-On (SSO), Multi-Factor Authentication (MFA), and federation services (SAML, OAuth).
• Technical Support: Troubleshoot identity-related issues across the Human, Machine, Agent/Application spectrum and support incident response needs.

The role is responsible for the configuration, administration, operation, and support of identity management technologies, including integration with networks, hardware, software, applications, and databases. Responsibilities also include end?to?end service delivery of identity management across all technology domains, encompassing backup, recovery, and disaster recovery capabilities. The candidate must have experience in supporting identity management technologies in a complex environment that includes data center, cloud providers, hosted vendor solutions and co-location facilities in a global technology ecosystem.

DAY-TO-DAY RESPONSIBILITIES

• Identify, plan, and execute Certificate Lifecycle Management (CLM) driven projects as needed.
• Fulfill service requests in Service Now related to Identity technologies
• Monitor the health of in-scope system and act when necessary. As well as enhance observability across supported services.
• Perform Incident and Problem management as needed.
• Improve operational rigor and efficiency through scripting and automation.
• Implement changes (typically off hours) to support modernization objectives and eliminate risks related to vulnerabilities.
• Work with Enterprise Security to assess and remediate any security findings that are discovered during Pen Tests and Vulnerability scans.
• Provide management of and support for all aspects of
• Plan and migrate on-premises workload to alternate solutions as part of the Data Center Exit strategy

• Bachelor's degree or the equivalent combination of education and relevant experience
• 5+ years of total relevant work experience
• Extensive understanding of Public Key Infrastructure (PKI), X.509 Certificates, Venafi CLM, and automated protocols such as SCEP.
• Deep Knowledge of Microsoft Active Directory Certificate Services (MS ADCS), as well as external certificate partners, like Digicert.
• Knowledge in Identity-based infrastructure: Active Directory, Entra ID, DNS and DHCP
• Intermediate knowledge of Windows and Linux operating systems, including how these machines use certificates.
• Experience with MS Defender and using the product to help keep our environment secure.
• Experience with scripting languages such as PowerShell and/or Python and how to use them to automate tasks.
• Strong communication skills (both verbal and written)
• Ability to participate in off-hour work, including scheduled On-Call.
• Demonstrated ability to work independently and as part of a team and project management skills
• Strong attention to detail, accuracy, and timeliness
• Self-motivated with a desire to work as part of a creative team in a highly collaborative corporate environment., * Detailed understanding of AWS and cloud computing principles and related expertise on identity management integrations
• Hands-on experience configuring SSO solutions
• Experience with Centrify, Netbackup, Quest Active Roles, and Cyberark
• Experience with MS Intune and JAMF

#LI-NN2 #LI-hybrid #DICE