Infrastructure Engineer

Infrastructure Engineer

Posted Today by Caraffi

Apply
Negotiable
Outside
Hybrid
Hatfield, England, United Kingdom
Apply
Active Directory Application Programming Interface (API) Authentications Automation Azure Active Directory Cloud Computing Cloud Technology Consolidation Domain Name System (DNS) Servers Dynamic Host Configuration Protocol (DHCP) File Servers Google Workspace Identity And Access Management Infrastructure as Code (IaC) Management Microsoft 365 Microsoft Azure Microsoft Windows Multi-Factor Authentication RESTful API Service Accounts Single Sign-On (SSO) Terraform Windows PowerShell Windows Servers

Summary: This contractor role as an Infrastructure Engineer focuses on the migration of legacy Active Directory infrastructure to Microsoft Entra ID. The position requires hands-on delivery and architectural guidance, ensuring a secure and low-risk migration while mentoring permanent team members. The role involves collaboration with cross-functional teams and the implementation of various identity management solutions. The contractor will also be responsible for developing automation scripts and training internal engineers on Entra ID administration.

Key Responsibilities:

  • Lead the end-to-end migration of on-premises Active Directory workloads into Microsoft Entra ID
  • Assess current AD environment (domain controllers, trusts, group policies, authentication flows) and design a migration roadmap
  • Collaborate with security architects to ensure Zero Trust principles and conditional access policies are embedded during migration
  • Manage migration pilots, proof-of-concepts, and phased cutovers to minimise disruption
  • Implement Entra ID hybrid join, password hash sync, federation (if required), and conditional access
  • Migrate groups, users, service accounts, and workloads from AD to Entra ID
  • Configure and troubleshoot authentication methods (MFA, SSO, passwordless)
  • Ensure DNS, DHCP, PKI and related infrastructure components align with the target Entra ID model
  • Develop and maintain migration automation scripts (PowerShell / REST API)
  • Train and upskill internal engineers on Entra ID administration and support

Key Skills:

  • Advanced knowledge of Entra ID, Windows Server, Active Directory (domain services, GPOs, trusts, replication), and Azure AD Connect
  • Proven ability to automate migration and identity lifecycle tasks using PowerShell and REST APIs
  • Experience implementing Terraform for Azure identity services
  • Familiarity with Zero Trust, Conditional Access, MFA, PKI, and secure identity architecture
  • Experience in large-scale AD forest/domain consolidation projects
  • Knowledge of hybrid environments (Azure AD Connect Cloud Sync, federation, or migration off ADFS)
  • Strong troubleshooting skills across DNS, DHCP, networking, and authentication flows
  • Exposure to Google Workspace or cross-identity migrations is a plus

Salary (Rate): undetermined

City: Hatfield

Country: United Kingdom

Working Arrangements: hybrid

IR35 Status: outside IR35

Seniority Level: undetermined

Industry: IT

Detailed Description From Employer:

Active Directory Migration to Entra ID - Contract - Hybrid Working - Hatfield - Outside IR35

About the Role

This contractor role will focus specifically on designing, planning, and executing the migration of legacy Active Directory (AD) infrastructure into Microsoft Entra ID . You will act as the subject matter expert (SME) for identity modernisation, working with cross-functional teams to ensure a secure, seamless, and low-risk migration. You’ll be hands-on with delivery, while also providing architectural guidance, risk assessments, and mentoring of permanent team members to leave behind a sustainable, well-documented solution.

Key Responsibilities

  • Lead the end-to-end migration of on-premises Active Directory workloads into Microsoft Entra ID
  • Assess current AD environment (domain controllers, trusts, group policies, authentication flows) and design a migration roadmap
  • Collaborate with security architects to ensure Zero Trust principles and conditional access policies are embedded during migration
  • Manage migration pilots, proof-of-concepts, and phased cutovers to minimise disruption
  • Implement Entra ID hybrid join, password hash sync, federation (if required), and conditional access
  • Migrate groups, users, service accounts, and workloads from AD to Entra ID
  • Configure and troubleshoot authentication methods (MFA, SSO, passwordless)
  • Ensure DNS, DHCP, PKI and related infrastructure components align with the target Entra ID model
  • Develop and maintain migration automation scripts (PowerShell / REST API)
  • Train and upskill internal engineers on Entra ID administration and support.

About You

You’ll bring deep, hands-on expertise in Microsoft identity platforms , particularly around migrations and hybrid identity scenarios:

  • Microsoft Environments: Advanced knowledge of Entra ID, Windows Server, Active Directory (domain services, GPOs, trusts, replication), and Azure AD Connect
  • Scripting & Automation: Proven ability to automate migration and identity lifecycle tasks using PowerShell and REST APIs
  • Infrastructure as Code (IaC): Experience implementing Terraform for Azure identity services.
  • Cloud & Security: Familiarity with Zero Trust, Conditional Access, MFA, PKI, and secure identity architecture
  • Experience in large-scale AD forest/domain consolidation projects
  • Knowledge of hybrid environments (Azure AD Connect Cloud Sync, federation, or migration off ADFS)
  • Strong troubleshooting skills across DNS, DHCP, networking, and authentication flows
  • Exposure to Google Workspace or cross-identity migrations is a plus
Apply
Similar Jobs
Loading data...