Senior Directory Services Engineer

The Sherwin-Williams Company - Cleveland, Ohio

The Directory Services group is responsible for overall design, management and support of the SW global LDAP services including ODSEE, OUD, OID, OVD, and Active Directory.  Ideal candidate will have experience with IDaaS design concepts as well as large-scale, global LDAP solutions including hands-on experience and expertise with MS AD and the Oracle Directory platform architecture and site design. Duties to include research, implementation, administration pertaining to Microsoft and Oracle directory platforms.  Candidate will also possess knowledge around unstructured data file shares and access control.  

Strategy & Planning

• Research, recommend and participate with other administrators, and associated client team(s) in the ongoing evaluation, testing, and selection of Identity systems and solutions.
• Research, evaluate and document best practices around Directory Services.
• Participate meaningfully in architecture strategy and planning efforts around Directory Services with direct team members and other teams.
• Contribute to overall Identity and Directory strategy including single sign on, federation, and integration.

Acquisition & Deployment

• Participate as assigned in the efforts to integrate and migrate acquired entity users and infrastructure.
• Manage, optimize and support the ongoing deployment(s) of Identity related systems including, but not limited to, Active Directory, ODSEE, OID, OVD, and OUD.
• Manage and support the deployment of global Domain Controllers and File Servers.
• Analyze existing applications from acquired entities to see how they can utilize existing SW Directory Service implementations.

• Design, implement, and support a highly available global 2012R2/2016 Active Directory and Federated Identity implementation.
• Monitor LDAP/Kerberos health using tools such as perfmon and powershell, recommend improvements.
• Consult with SW application analysts utilizing Directory authentication / authorization services to help setup/test/troubleshoot 3rd party application integration.
• Provide basic Directory reporting metrics such as authentication, authorization, object totals.
• Manage, test, and implement AD Group Policies, recommend improvements to Group Policy.
• Implement, manage and document administrative processes and procedures.
• Provide escalation point for level 2 and level 3 support requests.

• Assist with Change Management preparations and implementations.
• Attend meetings in participation with the team, clients, peers and/or management.
• Assist with other projects as may be required to contribute to the efficiency and effectiveness of the group.
• Participate in hiring activities and fulfilling affirmative action obligations and ensuring compliance with the equal employment opportunity policy.
• Provide 24/7 on-call support as part of shared on-call rotation.
• Minimal travel required, with potential of some international travel.
• Working outside the standard office 7.5 hour work day will be required during on-call rotation.

Position Requirements

• Bachelor's Degree or foreign equivalent in related field or equivalent experience.

Knowledge & Experience

• 5 yrs. IT experience.
• 5 yrs. advanced troubleshooting skills around LDAP solutions such as ODSEE/OUD/OVD/Active Directory
• 5 yrs. experience performing administration/support with LDAP/Authentication/Authorization solutions from vendors such as Microsoft and Sun/Oracle.
• Ability to automate LDAP tasks on demand using Powershell and/or equivalent automation/scripting interface is required.
• Experience with LDAP architecture in a large (>55,000 user) environment.
• Experience with the latest IDaaS concepts and Federated/Claims Identity solutions such as Azure Active Directory, Okta, or Ping. 
• Knowledge of networking concepts such as DNS, Load Balancers, Firewall as it related to Directory and Federated solutions.
• Experience with the Microsoft / Oracle platforms
• Experience planning and documenting tasks and projects.

• Strong and comprehensive verbal and written communications.
• Responsive and alert to new learning opportunities, growth and development of technical, interpersonal and business skills; able to recognize and address areas needing improvement.
• Motivated and competent to contribute appropriate time and effort to work needing attention.
• Attentive to detail with focus on accurate and timely results.
• Organized and able to prioritize tasks, responding effectively to competing needs.
• Attentive and reactive to customer needs and concerns.
• Strong analytical and problem-solving abilities.
• Consistently engaged in research related to hardware, software and business solutions.
• Strong customer service orientation.
• Able to contribute to team effort and individual achievement.

---

Posted: 30+ days ago

Apply Now