Identity Infrastructure Specialist
The role of Identity Infrastructure Specialist involves delivering targeted, project-based modernization across identity and server platforms. This includes replacing ageing on-premises systems with secure, cloud-ready solutions through migrations, re-architecture, disaster recovery, PKI, Azure DNS and DHCP, observability using both native and open-source stacks, hyperconverged infrastructure server migrations, and Azure ARC onboarding.
About the Role
* Lead assessment and target-state design for hybrid Active Directory and Azure Entra Directory migrations, including tenant and domain consolidation and forest redesign.
* Plan and execute staged migration waves and cutovers with rollback, runbooks, and acceptance criteria aligned with service windows.
* Modernize service accounts and privileged credentials through inventory, remediation, managed identities, and lifecycle automation.
* Design, deploy, and operate PKI including CA hierarchy, certificate templates, automated issuance and renewal, CRL/OCSP, and Active Directory or Entra integration.
* Achieve Azure disaster recovery plans to maintain essential services during outages, including replication, failover orchestration, and runbook testing.
* Migrate servers on hyperconverged infrastructure (HCI) and onboard clusters and servers into Azure management via Azure ARC for unified policy, monitoring, and patching.
* Design and operate Azure DNS and DHCP at scale, including zone architecture, split-DNS, automated record management, DHCP scope design, and IPAM integration for hybrid environments.
* Build observability and reporting across hybrid platforms using Azure native tools and open-source stacks (Prometheus, Grafana, ELK/OpenSearch, OpenTelemetry).
Key Responsibilities:
* Hybrid identity platform design and deployment
* Server migration and Azure ARC onboarding
* PKI design and operation
* Azure disaster recovery planning and execution
* Observability and reporting
What You Will Need:
* Expertise in Microsoft hybrid environments
* Strong understanding of identity and access management concepts
* Experience with Azure services, including Azure Active Directory, Azure Entra, and Azure Arc
* Knowledge of PKI and certificate management
* Ability to design and deploy complex infrastructure upgrades