Microsoft Hybrid Identity Engineer (Council Infrastructure Modernisation)
Location: Hervey Bay – Onsite preferred, flexible options considered (Onsite required for cutovers/commissioning)
Engagement: 2-Year Contract
About the Role
We are seeking an experienced Microsoft Hybrid Identity Engineer to deliver a major infrastructure modernisation programme for a local council.
This is a contract role with high visibility and technical breadth, focused on replacing legacy on-premises systems with secure, cloud-ready solutions.
You will lead hybrid identity, name services and server platform renewals, migrations to Azure, and the implementation of disaster recovery, PKI, observability, DNS/DHCP and HCI server modernisation — all to public sector standards.
This engagement is ideal for a hands-on engineer who enjoys delivering targeted, high-impact outcomes that directly improve community services.
Why Consider This Role?
Deliver measurable public value through council infrastructure modernisation.
Work across a broad technical scope: identity, PKI, DNS/DHCP, DR, HCI and observability.
Lead short-term, high-impact engagements with autonomy and clear milestones.
Contribute to long-term council digital programmes with potential future opportunities.
Scope of Work
- Lead design and migration of Hybrid Active Directory & Azure Entra ID (tenant/domain consolidation, forest redesign).
- Plan and execute staged migration cutovers with rollback and runbooks.
- Modernise service accounts & privileged credentials (managed identities, lifecycle automation).
- Design and deploy PKI (CA hierarchy, templates, automation, revocation).
- Architect and implement Azure Disaster Recovery with failover testing.
- Lead HCI server migrations and onboard to Azure ARC for management and monitoring.
- Design and operate Azure DNS/DHCP at scale (zone architecture, split DNS, IPAM).
- Build unified observability across on-prem and cloud (Azure Monitor + open source stacks such as Prometheus, Grafana, ELK/OpenSearch, OpenTelemetry).
- Deliver procurement-ready specifications, compliance documentation, and acceptance test plans.
- Provide transparent handover: runbooks, dashboards, scripts and operational training.
Deliverables
- Target state architecture & migration roadmap
- Procurement-ready technical specifications
- Migration runbooks, rollback plans & acceptance criteria
- PKI design & automation
- Azure DR replication config & failover test reports
- Azure DNS/DHCP automation & IPAM integration
- Observability dashboards, alerting rules & runbooks
- Handover documentation, training materials & support plan
Required Experience
- Proven Hybrid AD & Azure Entra migrations in production environments
- AD Connect, federation/modern auth strategies, troubleshooting syncs
- Credential modernisation (managed identities, privileged access hardening)
- Practical PKI deployment & automation experience
- Azure DR architecture & failover testing
- HCI migration experience (VMware, Nutanix, HPE SimpliVity, vSAN) + Azure ARC
- Strong Azure DNS/DHCP & IPAM design skills
- Observability expertise with Azure Monitor & open source stacks
- Scripting & automation: PowerShell, Azure CLI, ARM/Bicep, Terraform
- Excellent documentation & public sector stakeholder engagement
Desirable
- Microsoft certifications (Azure Administrator, Solutions Architect, Identity)
- PAM, IGA, SCIM, OAuth2/OIDC experience
- Previous contracting within local/state government
Rate
- Daily rate = $ per day inc Super or ex GST
- 2-year contract
If you're a technically skilled Hybrid Identity Engineer who thrives in complex, high-impact public sector modernisation projects, we'd love to hear from you.
Apply now to shape the future of council services with modern, cloud-ready infrastructure.
Any questions, please call Iain on
📌 Microsoft Hybrid Identity Engineer
🏢 Halcyon Knights
📍 Hervey Bay