Assistant Azure Active Directory Jobs (NOW HIRING)

Job Summary:
Marotta Controls is seeking an Active Directory Engineer responsible for designing, implementing, and supporting enterprise-level Active Directory Infrastructure. The role focuses on managing Group Policy Objects and enforcing security best practices while collaborating with various teams to integrate identity services.
Responsibilities:
• Design, implement, and maintain Active Directory (AD) services in a multi-forest, multi-domain environment
• Administer and optimize Microsoft Entra (Azure AD), including hybrid identity integrations
• Implement and support Single Sign-On (SSO) solutions for cloud and on-premises applications
• Manage identity lifecycle processes (joiner, mover, leaver) using tools such as ADManager
• Configure and maintain authentication methods including MFA, conditional access, and federation
• Ensure secure access controls through role-based access control (RBAC) and least privilege principles
• Support identity architectures and configurations aligned with NIST 800-171 and CMMC security controls
• Monitor and troubleshoot identity-related issues across on-prem and cloud platforms
• Collaborate with security, infrastructure, and application teams to integrate identity services
• Assist with audits, compliance assessments, and evidence collection related to identity and access controls
• Develop and maintain technical documentation, standards, and operational procedures
• Participate in identity modernization initiatives and continuous improvement efforts
Qualifications:
Required:
• Bachelor’s degree in computer science or equivalent
• Must be a US Citizen
• Technical solution design and planning experience
• Strong knowledge of creating, managing and troubleshooting Group Policy Object
• Basic understanding of the project management life cycle
• Five to seven years’ hands-on experience administering and hardening Microsoft Active Directory in a multi-forest environment
• Experience with Microsoft Entra (Azure AD) and hybrid identity architectures
• Experience implementing and supporting Single Sign-On (SSO) technologies (SAML, Kerberos, NTLM)
• Experience implementing and administering MFA solutions, including Duo MFA
• Experience with identity lifecycle management and access provisioning/deprovisioning
• Leverage ADManager Plus tools to automate user provisioning, reporting, delegation, and bulk account management tasks. Experience implementing conditional access and identity security best practices
• Strong PowerShell scripting skills for automation and administration
• Strong attention to detail
• Good problem-solving skills with the ability to think creatively
• Excellent written and verbal skills, including ability to clearly articulate technical issues and activities to technical and non-technical staff
• Strong interpersonal skills and the ability to adapt in a complex and changing environment
• Consistently meet expected production, accuracy and quality standards as set by management
• Must be team oriented with the ability to work independently
Preferred:
• Experience administering Microsoft 365 (user, license, and service administration)
• Experience with Privileged Access Management (PAM/PIM) solutions
• Familiarity with Zero Trust security principles and architecture
• Experience integrating SaaS and enterprise applications with Microsoft Entra ID
• Familiarity with NIST 800-171 and CMMC requirements as they relate to identity and access management
• Experience supporting audits or compliance assessments (e.g., CMMC, NIST, ISO, SOC)
• Experience with directory synchronization tools (e.g., Entra Connect / Azure AD Connect)
• Relevant certifications (e.g., Microsoft Identity, Azure Security Engineer, CISSP, CMMC-related certifications)
Company:
Marotta Controls provides resources and solutions for global security and aerospace system designers and integrators. Founded in 1943, the company is headquartered in Montville, USA, with a team of 501-1000 employees. The company is currently Late Stage.