Assistant Manager - Technology Services

Description and Requirements
Position Summary:
We are seeking a highly skilled professional specializing in Active Directory and Azure Active Directory to lead our dynamic team of IT professionals. The ideal candidate will possess in-depth expertise in designing, implementing, and maintaining complex Active Directory environments, along with a strong understanding of Azure AD integration and management. This role requires exceptional leadership abilities, technical acumen, and a proactive approach to problem-solving.
Active Directory Infrastructure Management:

• Design, implement, and manage enterprise-scale Active Directory environments, ensuring optimal performance, scalability, and security.
• Oversee the configuration and maintenance of Group Policies, DNS, and other core Active Directory services.
• Manage Active Directory schema extensions and updates to accommodate new attributes and object classes as per organizational requirements.
• Monitor and optimize the deployment and placement of domain controllers across geographical locations for fault tolerance and high availability.
• Integrate Active Directory with LDAP-based directory services and applications, ensuring seamless authentication and directory synchronization.
• Configure LDAP policies and access controls to govern directory access and permissions for LDAP-enabled applications and services.
• Design and implement Active Directory forests and domains based on organizational structure, business requirements, and security considerations.
• Plan and execute forest and domain consolidations, migrations, and restructuring initiatives to streamline directory services architecture.
• Establish and manage trust relationships between Active Directory domains, forests, and external identity providers for cross-domain authentication and resource access.
• Implement and configure Active Directory Federation Services (AD FS) for federated identity and single sign-on (SSO) with cloud-based applications and services.
• Develop and maintain backup and recovery strategies for Active Directory, including regular system state backups, offline domain controller backups, and authoritative restore procedures.

• Test and validate Active Directory disaster recovery plans to ensure business continuity and data integrity in the event of system failures or disasters.
• Monitor Active Directory performance metrics and resource utilization to identify bottlenecks, trends, and capacity planning requirements.
• Optimize Active Directory database (NTDS.dit) performance, replication topology, and site link configurations to minimize latency and maximize efficiency.
• Implement auditing policies and security event logging in Active Directory to track changes, access attempts, and security incidents for compliance with regulatory requirements and internal policies.
• Generate and review compliance reports, including Active Directory security assessments, access reviews, and audit trails, to ensure adherence to industry standards and best practices.

Azure Active Directory Integration:

• Architect and implement Azure AD solutions to support hybrid or cloud-only identity and access management scenarios.
• Manage Azure AD Connect configurations, synchronization, and federation services for seamless integration with on-premises Active Directory.

Security and Compliance:

• Develop and enforce security policies, procedures, and best practices to safeguard Active Directory environments from internal and external threats.
• Conduct regular security assessments, audits, and compliance reviews to ensure adherence to industry standards and regulatory requirements.

Troubleshooting and Incident Response:

• Lead troubleshooting efforts for Active Directory-related issues, collaborating with cross-functional teams to resolve complex technical problems promptly.
• Develop and implement incident response procedures to minimize downtime and mitigate risks to business operations.

Education:
Bachelor's Degree in Computer Science, Information Systems, or related field.
Experience:

• Proven experience (10+ years) in a technical leadership role, with a focus on Active Directory and Azure Active Directory.
• Expertise in designing, implementing, and managing complex Active Directory environments in enterprise-scale organizations.
• Hands-on experience with Azure AD integration, including Azure AD Connect, Azure AD Domain Services, and Azure AD B2B/B2C.
• Strong understanding of identity and access management (IAM) principles, including authentication protocols, single sign-on (SSO), and multi-factor authentication (MFA).
• Proficiency in PowerShell scripting for automation, configuration management, and reporting tasks related to Active Directory and Azure AD.

Excellent communication skills, with the ability to articulate technical concepts to non-technical stakeholders and executive leadership.
About MetLife
Recognized on Fortune magazine's list of the 2024 "World's Most Admired Companies" and Fortune World's 25 Best Workplaces™ for 2024, MetLife , through its subsidiaries and affiliates, is one of the world's leading financial services companies; providing insurance, annuities, employee benefits and asset management to individual and institutional customers. With operations in more than 40 markets, we hold leading positions in the United States, Latin America, Asia, Europe, and the Middle East.
Our purpose is simple - to help our colleagues, customers, communities, and the world at large create a more confident future. United by purpose and guided by empathy, we're inspired to transform the next century in financial services.
At MetLife, it's #AllTogetherPossible . Join us!
#BI-Hybrid