Senior Identity Management Engineer in Milwaukee, WI at APEX Systems

Date Posted: 6/19/2018

Job Snapshot

Job Description

Job #:  858423

Title: Senior Identity Management Engineer

Identity & Access Management Team Lead, Engineering

Responsibility Level:

Responsible for the service design, build and documentation all key elements Active Directory and Identity & Access Management infrastructure. Ongoing operations are then transitioned from the Engineering team to the Service Operations teams who perform Level 1 and Level 2 support. Senior Identity & Access Management Engineer is responsible for the efficient and effective transition from the Build cycle to the Operations cycle which includes documentation, education and ongoing Level 3 support.

Primary technologies include but are not limited:

Active Directory (AD) 

Active Directory Lightweight Directory Services (AD LDS)

Directory Services in the cloud (Azure, AWS)

Dynamic Host Configuration Protocol (DHCP)

Domain Name System (DNS) 

Active Directory Certificate Services (AD CS)

Active Directory Group Policy Objects (GPO) 

Network Policy Server (NPS)

Additional technologies preferred:

CA Siteminder 

CA Identity Minder 

Microsoft Identity Manager (MIM)

Forefront Identity Manager (FIM) 


Quest Compliance Suite

Additional responsibilities include:

Level 3 support, capacity planning, and problem management, change management, bandwidth and connectivity planning, server planning, storage planning, reporting, budgeting and planning for identity management related initiatives.

Primary Duties:

1. Follow the Engineering process, which includes Service Design, Build and Transition of all new initiatives, with phase gates reviews presented to all stakeholders during the process.
2. Maintains an understanding of all current and emerging identity management technologies, open system standards, management technologies as they relate to the support of Client collaboration infrastructure.
3. Provide leadership and act as a senior level mentor and provide support to technical
personnel for any/all issues regarding service design, implementation, education and
support of Identity & Access Management infrastructure and availability.
4. Stays current on regional application and infrastructure projects to maintain effective
availability and global consistency among regional infrastructure, integration and
5. Acts as liaison between architecture team, service operations team and
vendors to provide transparency on future projects, activities, business requirements and technical concerns of initiated projects.
6. Help define implementation road maps, support requirements and management
7. Ensures that third party solutions follow all standards.
8. Provides senior management and general staff with accurate and complete status
9. Sponsors, orchestrates and implements technology pilots in order to evaluate emerging
technologies and their applicability in support of business requirements and strategic goals.
10. Acts as an internal consultant to BU’s and Infrastructure IT.
11. Adheres to all current Change and Problem management policies and procedures.


1. Bachelor’s degree or related experience in Computer Science, Engineering or related discipline.

2. Strong experience with Active Directory, PKI, RADIUS, DNS, MS Visio, PowerPoint, MS Word and MS Excel.

3. Minimum 5 to 10 years of experience, designing, implementing and production support of large-scale, global LAN/WAN Active Directory environments supporting over 75,000 users and globally diversified application authentication requirements.

4. Professional certification in support of Microsoft, IBM, Siteminder and other technologies is desired.

5. Strong project management skills and global experience.

6. Strong technical and non-technical communication skills.

7. Ability to establish and maintain high levels of client trust and confidence.

8. A proven track record of driving the delivery of large, complex projects.

9. A broad range of knowledge desired, including experience with:
a. Active Directory
c. IP Networks
d. Application Integration
e. Security and compliance
f. LDAP, Kerberos