Job
- Level
- Experienced
- Job Field
- IT, System, Security
- Employment Type
- Full Time
- Contract Type
- Permanent employment
- Location
- Achim
- Working Model
- Hybrid, Onsite
Job Summary
In this role, you will design policies for Active Directory and PKI, implement security strategies, and manage the integration of identity systems, including Conditional Access and certificate management.
Job Technologies
Your role in the team
- In your role as "System Engineer (m/f/d) Active Directory, Entra ID, and PKI," you are responsible for defining, developing, and communicating company-wide IT standards in the area of Directory Services as well as the central PKI environment.
- In addition, you will be responsible for defining and further developing standards and architectures in the Microsoft Entra ID (Azure AD) domain, including Identity Governance and Zero-Trust approaches. You will create requirements analyses and specify solutions in the areas of Tier-0, Active Directory, PKI, and Entra ID.
- You will also contribute to ensuring IT security policies, including the management and operational concept of the PKI, as well as Conditional Access strategies, and take on the design, implementation, and operation of Conditional Access policies to secure identities and access.
- In this role, you will be responsible for executing integration tasks between Active Directory, PKI, and Entra ID (e.g., Hybrid Identity, Group Policy, Auto-Registration, Certificate Distribution, App Integration) as well as IAM-related evaluations, including certificate usage analysis, sign-in, and risk assessments in Entra ID.
- Furthermore, you will contribute to ensuring compliance with PKI- and identity-related security standards, support audits, and take the lead on (sub-)projects, including managing external IT service providers and project partners, especially in the areas of AD, PKI, and Identity.
This text has been machine translated. Show original
Our expectations of you
Education
- Successfully completed studies in the IT field or a comparable qualification
Qualifications
- In-depth knowledge of Microsoft Entra ID (Azure AD), particularly in the areas of Conditional Access, Identity Protection, and Enterprise Applications.
- Knowledge in integrating PKI with Active Directory and Entra ID (e.g., certificate-based authentication, Hybrid Identity)
- Knowledge in the areas of AD-Tiering, Privileged Access Management (PAM/PIM), and Zero-Trust architectures.
- Proficient handling of certificate standards (X.509, TLS/SSL) as well as encryption technologies
- Strong sensitivity to stable and secure IT solutions, especially in the field of Identity and PKI.
- Team orientation as well as strong analytical and conceptual skills
- Excellent written and spoken proficiency in German and English.
Experience
- Several years of professional experience as well as solid knowledge in the design and implementation of complex IT environments, especially in Active Directory, PKI, and Entra ID.
- Practical experience with PowerShell scripting as well as the automation of AD, PKI, and Entra ID operations.
- Experience in operating and managing a central PKI environment (Certificate Authority, Certificate Templates, CRL/OCSP, Certificate Lifecycle)
- Experience in integrating applications via SAML, OAuth2, and OpenID Connect, as well as in Application Provisioning (SCIM).
- Experience in hybrid identity architectures (AD Connect, Cloud Sync, CrossTenant)
- Experience in IT project management as well as proficient handling of project management methods (desirable)
This text has been machine translated. Show original
What we offer
- Unique corporate culture: Based on the values of Ferdinand Graf von Zeppelin, we operate as a foundation company that is forward-looking, socially responsible, and sustainable.
- We are sustainable: We live the protection of the environment and climate. And we mean it seriously: By 2030, we will make Zeppelin climate-neutral in our ongoing business operations.
- Freedom to design: With us, you have the opportunity to drive topics forward independently.
- Grow with Zeppelin: We support you with extensive development opportunities and a diverse training program.
- Z Colourful: We work with targeted activities, such as our women's network and our impulse series, to embed diversity and its appreciation at Zeppelin.
- Work-Life Balance: We offer you mobile and flexible working arrangements as well as 30 days of vacation. Additionally, we have various programs and initiatives related to health, children, and caregiving.
- Health and Movement: Through our initiative ZFIT, you can participate in various themed weeks and yoga classes or also lease a company bicycle.
- Company pension scheme: We top up your retirement benefits.
This text has been machine translated. Show original
Benefits
Work-Life-Integration
Health, Fitness & Fun
More net
Topics that you deal with on the job
Job Locations
This is your employer
Zeppelin GmbH
Der weltweit an mehr als 200 Standorten aktive Zeppelin Konzern mit knapp 9.000 Mitarbeitern erwirtschaftete im Geschäftsjahr 2018 einen Umsatz von 2,9 Milliarden Euro. Der Konzern bietet Lösungen in den Bereichen Bau-, Bergbau- und Landmaschinen, Baulogistik und Baustellenmanagement, Miet- und Projektlösungen, Antrieb und Energie, Engineering und Anlagenbau und entwickelt neue digitale Geschäftsmodelle für die Bauwirtschaft und Industrie.
Description
- Company Size
- 50-249 Employees
- Company Type
- Established Company
- Working Model
- Hybrid, Onsite
- Industry
- Construction, Real Estate, Building Services