Why SoftwareOne? Success at SoftwareOne is not defined by what you do for yourself, but by what you deliver for our customers, the business and for the employees around you. SoftwareOne employees are energized, agile and are laser passionate about delivering special Customer Happiness and results. Our leaders empower and encourage their teams and provide a working environment that delivers incredible levels of Employee Happiness. We are Low ego. Our leaders operate with a high level of Team but can work at Speed lead change in a global economy. We are a leading global provider of end-to-end software and cloud technology solutions, headquartered in Switzerland. Our 8,700 employees support our approximately 65,000 customers in their digital transformation. The role We are thrilled to announce an opportunity to join our team as: Active Directory Analyst SoftwareOne We are seeking a highly skilled Active Directory Analyst to manage and support complex identity infrastructure in both on-premises and hybrid cloud environments. This position requires hands-on experience with Active Directory, Entra ID (Azure AD), ADFS, and related security and automation practices. The ideal candidate will have a solid background in directory services, hybrid identity, security hardening, and scripting for enterprise-level environments. Key Responsibilities: Design, implement, and manage forests and domains Administer FSMO roles, Group Policies (GPOs), trust relationships, replication, and site topology Provide advanced troubleshooting using tools like repadmin, dcdiag, ldp, nltest Manage cloud-based identities and users Configure and troubleshoot hybrid identity synchronization (Azure AD Connect / AADConnect) Administer groups, Conditional Access, Multi-Factor Authentication (MFA) Support hybrid authentication models and federated environments Deploy and maintain ADFS farms Integrate with SaaS services and applications using SAML/OAuth Troubleshoot claims, certificates, and endpoints AD Certificate Services (ADCS) Design and maintain PKI hierarchy (Root and Subordinate CAs) Manage certificate templates, auto-enrollment, CRLs Integrate certificates with VPN, Wi-Fi, EFS, and web service File Server & Storage Implement and support file servers Configure DFS, file screening, quotas, and classification Apply SMB hardening and role-based access controls Hybrid Environments (On-Prem + Cloud) Lead or support identity and file server migrations to Azure / Microsoft 365 Maintain synchronization of objects and identities across environments Utilize Hybrid Join, Azure AD Connect, and other hybrid tools Security & Compliance Implement hardened AD environments using ESAE/Tiering models Apply least privilege models, Just-In-Time (JIT), and Just-Enough-Administration (JEA) Ensure alignment with CIS, NIST, and Microsoft Secure Score best practices Perform advanced auditing and compliance reporting Use advanced PowerShell scripting to automate tasks across AD, Azure, ADFS, and PKI Create custom provisioning, auditing, and backup/restore scripts What we need to see from you Proven experience with Active Directory and Entra ID (Azure AD) in enterprise environments Deep understanding of ADFS, ADCS, file server architecture, and hybrid identity solutions Strong PowerShell scripting skills for identity and infrastructure automation Familiarity with regulatory and security frameworks (CIS, NIST, Zero Trust) Ability to manage environments with high availability and security requirements Soft Skills: Critical thinking and complex problem-solving Effective communication with both technical and business stakeholders Ability to work in regulated or high-availability environments Technical leadership and mentoring capabilities Project management understanding (ITIL, PMP, or Agile is a plus) Strong customer orientation and adaptability to change Preferred Certifications: Microsoft Certified: Identity and Access Administrator Associate Microsoft Certified: Azure Administrator Associate (AZ-104) Microsoft Certified: Windows Server Hybrid Administrator Associate Microsoft Certified: Cybersecurity Architect Expert (optional) MS-500: Security, Identity, and Compliance Fundamentals ITIL v4 Foundation (for ITSM-aligned environments) __________________________________________________________________________________________ Why should you join? Creative culture with lived values that foster a supportive and appreciative work environment. Employee recognition programs. A variety of training and continuous development opportunities. Work-life balance and flexible collaboration. Referral bonus program. Multicultural interaction and global team experience. Opportunities to contribute to society through employee-led initiatives. Access to the latest technologies for internal projects and client solutions. Corporate events, community involvement, and much more. _____________________________________________________________________________________________________________________ At SoftwareOne, we are committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and teammates without regard to race, color, religion, age, sex, national origin, disability status, genetics, sexual orientation, gender identity or expression, or any other characteristic protected by local laws. Job Function Software & Cloud