Enterprise Software Administrator – Identity

• Provide user account, security group, and service account life cycle management, including
  creating, provisioning, securing, and inactivation of access.
• Provides support and maintenance for Active Directory Federation Services (ADFS), Microsoft
  Entra ID, and Microsoft 365.
• Troubleshoot and provide support for applications, as needed.
• Review, process, and update tickets daily.
• Utilizes automation tools and techniques, such as PowerShell, to streamline identity and access procedures.
• Configure and maintain on-prem and cloud applications in multi-platform environments.
  Monitor, diagnose and resolve issues with applications.
• Provides before, after hours and weekend support for migrations, updates, fixes and issues, as
  needed.
• Take ownership and improve internal processes related to the administration of applications
  supported including quality assurance guidelines. Improve Application administration standards and processes to promote increased quality, performance and customer service and experience. Improve Application processes to promote increased performance, efficiency, and customer self-sufficiency.
• Configure monitor and maintain access control to cloud services such as Azure
• Explore and implement automations for processes. Develop, update, and maintain processes for automated file transfers.
• Develop and maintain documentation, check lists for internal processes and procedures. Create work plans, test plans and coordinate testing activities. Document process diagrams, data flow diagrams, root cause analysis as appropriate.
• Work closely with the office of the ISO to develop and maintain standards and procedures
  aligning with the university policies.
• Participate in ongoing auditing and risk assessments, and implementation of audit
  recommendations.
• Participates in a planned program of professional development. Attend application technical
  training, workshops, seminars, meetings, and other training, as required.
• Keep abreast of new technologies and make recommendations on how these may be utilized
  within the organization.
• Participate in projects to ensure standard processes and procedures are implemented when
  rolling out new provisioning and role management points.

• Understanding of DNS, roles, Authoritative vs Recursive servers, record types, zones, zone transfers, etc.
• Understanding and experience with core Active Directory Infrastructure, such as creating sites, site replication, DHCP, FSMO roles and their functions
• Experience creating and securing Group Policy.
• Experience with Active Directory administration / automation through PowerShell.
• Experience with enterprise level email support (Microsoft Exchange/MS Office 365). · Experience managing a Microsoft 365 tenant.
• Experience with Single Sign On (SSO) including CAS, Shibboleth, LDAP, and federation.
• Experience with Active Directory security and management, Azure AD, and multi-factor authentication.
• Demonstrate ability to provide sufficient customer service, be a good listener and work well with various groups of customers and IT.
• Demonstrate ability to be the subject matter expert in supporting, maintaining, and administering complex applications.
• Problem solving/analytical skills, knowledge of analytical tools, and complex troubleshooting methods.
• Good verbal and written communication skills
• Learn and adopt process automation, best practice approach, technology efficiency, and effectiveness.
• Self‐motivated, able to work independently, and takes initiative.
• Ability to learn new content areas and new skills quickly.
• Professional attitude and work habits.
• Ability to work though ambiguous work situations.

• Health, dental & vision insurance
• Life insurance
• State of Texas Retirement plans
• Tuition covered at 100% for employees, spouses and/or eligible dependent.
• Paid time off – vacation, sick, and holidays.

• Associate degree in computer science, management information technology, computer technology, information technology, or related field and two (2) years of progressively responsible information technology and/or identity and access management experience; or any equivalent combination of education, training and experience. OR Three (3) years of progressively responsible information technology and/or identity and access management experience; or any equivalent combination of education, training, and experience.
• Conducts work assignments of minimal complexity. Contributes to specific objectives and outcomes.
• Works under clearly defined guidelines.
• Experience with enterprise operating systems and services.
• Administration experience supporting application computing environments, understanding the security issues involved in deploying, maintaining, and safeguarding institutional data. · Understand and follow software management life cycle, including change management, functional and technical specification development.
• Installation and configuration of multi-tier application software in an enterprise environment. · Understanding of networking and troubleshooting.
• Understanding of DNS, roles, and Authoritative vs Recursive servers.
• Understanding of core Active Directory Infrastructure, such as creating sites, site replication, DHCP, FSMO roles and their functions and upgrade and maintenance of university-wide Active Directory.
• Understanding of email technologies such as Exchange, M365 administration practices, SMTP email relay, and Teams
• Familiarity with AD security concepts including privileged access workstations (PAW), privileged access management (PAM), Privileged identity management (PIM), AD tier models.
• Understanding of Active Directory integration with Office 365 & Microsoft Entra ID.
• Must have ability to follow test plans and coordinate necessary resources for coworkers and customers to facilitate maintenance activities.
• Problem solving and troubleshooting skills. · Good oral, written communication skills and organizational skills.

Lamar University is An Equal Opportunity Employer

Lamar University is proud to provide employment preference to veteran applicants in accordance with Texas 805 Government Code, Section 657.003.

• Basic familiarity with Cloud based offerings and cloud deployments.
• Ability to learn to diagnose and debug automation and integrate modern and legacy tools to optimize business processes.
• Experience as an administrator in a team working directly with functional counterparts on requirements gathering and program specification and design and process and IAM systems that interact with ERP platforms such as Banner.
• Ability to develop, diagnose and debug automation and integrate modern and legacy tools to optimize business processes.
• Security+
• Experience with Multi Factor Authentication technologies such as Duo security integration into the authentication, and single sign on process for applications and systems.
• And more importantly, a willingness to learn more about all the above.