UChicago Medicine
Active Directory Engineer – Specialist
UChicago Medicine, Chicago, Illinois, United States, 60290
Join a world-class academic healthcare system,
UChicago Medicine , as an
Active Directory Engineer – Specialist
in our
Information Security
department. This position will be primarily a work-from-home opportunity with the requirement to come onsite as needed. This individual will be part of the Security Engineering team and will play a key role in Active Directory modernization, hybrid cloud identity integration, domain consolidation, and enterprise-grade SSO solutions. They will assist in designing, administering, analyzing, evaluating, troubleshooting, and documenting complex technology systems, including technical platforms, SAN solutions, email systems, and network operating systems. The role requires technical expertise to support testing, analysis, and decision-making to maximize system availability. Essential Job Functions
Architect, implement, and support hybrid identity infrastructure integrating on-prem Active Directory with cloud-based services (e.g., Azure AD, Entra ID, Okta, AWS IAM). Lead domain migration and consolidation projects across complex enterprise environments. Manage and optimize LDAP directories and identity sync tools between internal and external systems. Design and maintain secure, scalable SSO configurations using SAML, OAuth, OIDC, and federation technologies. Develop and enforce Group Policy Objects (GPOs), domain trusts, and domain controller health. Administer systems and continually improve processes and procedures. Analyze issues and implement corrective actions. Ensure long-term system operation requirements are included in organizational planning. Install, maintain, and upgrade hardware and software, including system architecture and network connectivity. Implement system enhancements to improve reliability and performance. Establish and recommend policies on system use and services. Design, support, and implement Disaster Recovery and High Availability plans. Mentor other Security Engineers and stay current with system technology trends. Required Qualifications
BS or BA degree in Computer Science, Engineering, or equivalent experience. Experience in AD Domain consolidation and with domain trusts and multi-forest/multi-domain organizations. Knowledge of modern Directory Services architectures, EntraID/Azure AD, and hybrid directory environments. Hands-on PowerShell scripting experience. Familiarity with identity federation (ADFS, SAML, OAuth) and security best practices for AD. Understanding of identity governance and privileged access management. Strong problem-solving skills, attention to detail, and ability to work independently or in a team. Excellent communication and organizational skills. Preferred Qualifications
Master’s degree. Healthcare industry experience. Position Details
Full-Time (1.0 FTE) Day shift, Remote location Department: Information Security Office Why Join Us? We’ve been at the forefront of medicine since 1899, providing compassionate, innovative healthcare. Join us to contribute to meaningful work that truly matters. Discover more at UChicago Medicine Career Opportunities. UChicago Medicine is an equal opportunity employer and requires COVID-19 vaccination proof as part of pre-employment. Exemptions are considered in accordance with law. Pre-employment physical, drug screening, and background check are required.
#J-18808-Ljbffr
UChicago Medicine , as an
Active Directory Engineer – Specialist
in our
Information Security
department. This position will be primarily a work-from-home opportunity with the requirement to come onsite as needed. This individual will be part of the Security Engineering team and will play a key role in Active Directory modernization, hybrid cloud identity integration, domain consolidation, and enterprise-grade SSO solutions. They will assist in designing, administering, analyzing, evaluating, troubleshooting, and documenting complex technology systems, including technical platforms, SAN solutions, email systems, and network operating systems. The role requires technical expertise to support testing, analysis, and decision-making to maximize system availability. Essential Job Functions
Architect, implement, and support hybrid identity infrastructure integrating on-prem Active Directory with cloud-based services (e.g., Azure AD, Entra ID, Okta, AWS IAM). Lead domain migration and consolidation projects across complex enterprise environments. Manage and optimize LDAP directories and identity sync tools between internal and external systems. Design and maintain secure, scalable SSO configurations using SAML, OAuth, OIDC, and federation technologies. Develop and enforce Group Policy Objects (GPOs), domain trusts, and domain controller health. Administer systems and continually improve processes and procedures. Analyze issues and implement corrective actions. Ensure long-term system operation requirements are included in organizational planning. Install, maintain, and upgrade hardware and software, including system architecture and network connectivity. Implement system enhancements to improve reliability and performance. Establish and recommend policies on system use and services. Design, support, and implement Disaster Recovery and High Availability plans. Mentor other Security Engineers and stay current with system technology trends. Required Qualifications
BS or BA degree in Computer Science, Engineering, or equivalent experience. Experience in AD Domain consolidation and with domain trusts and multi-forest/multi-domain organizations. Knowledge of modern Directory Services architectures, EntraID/Azure AD, and hybrid directory environments. Hands-on PowerShell scripting experience. Familiarity with identity federation (ADFS, SAML, OAuth) and security best practices for AD. Understanding of identity governance and privileged access management. Strong problem-solving skills, attention to detail, and ability to work independently or in a team. Excellent communication and organizational skills. Preferred Qualifications
Master’s degree. Healthcare industry experience. Position Details
Full-Time (1.0 FTE) Day shift, Remote location Department: Information Security Office Why Join Us? We’ve been at the forefront of medicine since 1899, providing compassionate, innovative healthcare. Join us to contribute to meaningful work that truly matters. Discover more at UChicago Medicine Career Opportunities. UChicago Medicine is an equal opportunity employer and requires COVID-19 vaccination proof as part of pre-employment. Exemptions are considered in accordance with law. Pre-employment physical, drug screening, and background check are required.
#J-18808-Ljbffr