A leading Irish organisation is seeking a highly experienced Systems Security Engineer / Senior Systems Administrator to join their infrastructure and security team. This is a hands‑on technical role for someone who lives and breathes Active Directory, Microsoft security tooling, and identity governance — and who can operate as a Subject Matter Expert across a hybrid on‑premises and Azure environment.
You’ll be stepping into a role that demands both deep technical execution and the ability to lead security remediation workstreams, drive compliance to CIS benchmarks, and shape long‑term identity and access management strategy.
What You’ll Be Doing
Managing and hardening a hybrid Active Directory environment (on‑prem + Azure/Entra ID)
Designing and implementing Conditional Access Policies, PAM solutions, and Zero Trust architecture
Leading Active Directory tiering, GPO redesign, and network segmentation initiatives
Serving as SME for Intune endpoint management and mobile device security
Driving CIS benchmark compliance across endpoints and servers
Supporting Single Sign‑On migrations (ADFS to Entra ID)
Leading or contributing to breach exercise remediation and threat & vulnerability management
Developing technical documentation for audits, stakeholder review, and knowledge transfer
Contributing to IAM strategy including RBAC design and provisioning/deprovisioning automation
What We’re Looking For
10+ years of experience in Windows infrastructure and systems administration
Deep expertise in Active Directory — design, hardening, tiering, GPO, and multi‑domain/forest environments
Strong hands‑on experience with Azure Active Directory / Microsoft Entra ID
Proficiency with Microsoft Intune, Conditional Access, and endpoint security
Experience with PAM solutions (CyberArk, Delinea Secret Server or equivalent)
Exposure to PKI / Certificate Authority management
Scripting ability in PowerShell
Solid understanding of CIS benchmarks and security remediation practices
Highly Desirable
Experience with identity platforms such as OKTA, ADFS, or PING Identity
Familiarity with Microsoft Purview, SCCM/SCOM, or Microsoft 365 security stack
Background in regulated industries (financial services, healthcare, or similar)
ITIL v3 Foundation or equivalent service management framework knowledge
Relevant Microsoft certifications (MCSA, AZ‑500 or similar)
Why This Role?
High‑impact position with ownership of security architecture decisions
Work within a mature, complex hybrid environment with genuine transformation underway
Collaborative team with senior stakeholder visibility
#J-18808-Ljbffr