[Remote] Active Directory Federation Service Customer Engineer
Note: The job is a remote job and is open to candidates in USA. JDA TSG equips major brands with specialized talent and business-process expertise. They are seeking an Active Directory Federation Service Customer Engineer to guide Fortune-1000 enterprises in achieving a secure identity posture across hybrid and cloud environments.ResponsibilitiesActive Directory Federation Services Assessment Onboarding AcceleratorMigrate and Protect Applications with Entra Architecture ServiceMigrate and Protect Applications with Entra Technical Blocker MitigationMicrosoft Active Directory Show Technical AbilityMicrosoft Active Directory On-Demand AssessmentActive Directory Security On-Demand Assessment - Active DirectoryLead and execute ADFS-to-ADFS version migrations and server farm upgradesMigrate enterprise applications and service providers from ADFS to Entra IDUnderstand and assist in writing claims and Access Control Policies for Relying Party TrustsUnderstand and assist in transitioning Issuance Authorization Rules to Access Control PoliciesUnderstand and assist in setting up multifactor authentication providers for Relying Party TrustsCollaborate with architecture and security teams to ensure secure and compliant federation designsPerform troubleshooting of claims, authentication flows, and certificate-related issuesSupport certificate rollover processes and update relying party trust metadataProvide knowledge transfer and training to customer teamsAct as a trusted advisor in federation and hybrid identity projectsUnderstand multi-domain and forest design conceptsSupport authentication and trust planningUnderstand OU design and delegation strategiesWork with Entra Connect and directory synchronizationUse basic PowerShell for administration and automation tasksTroubleshoot replication and authentication issuesSkills10 - 15+ years of hands-on experience in Active Directory7 - 10 years of experience in design, deploy, and configure ADFS environments (2016/2019/2022/2025) for new and existing customersLead and execute ADFS-to-ADFS version migrations and server farm upgradesMigrate enterprise applications and service providers from ADFS to Entra IDUnderstand and assist in writing claims and Access Control Policies for Relying Party TrustsUnderstand and assist in transitioning Issuance Authorization Rules to Access Control PoliciesUnderstand and assist in setting up multifactor authentication providers for Relying Party TrustsCollaborate with architecture and security teams to ensure secure and compliant federation designsPerform troubleshooting of claims, authentication flows, and certificate-related issuesSupport certificate rollover processes and update relying party trust metadataProvide knowledge transfer and training to customer teamsAct as a trusted advisor in federation and hybrid identity projectsUnderstand multi-domain and forest design conceptsSupport authentication and trust planningUnderstand OU design and delegation strategiesWork with Entra Connect and directory synchronizationUse basic PowerShell for administration and automation tasksTroubleshoot replication and authentication issuesFamiliarity with Entra ID licensing tiers (Free, P1, P2)Understand role-based access control (RBAC) conceptsKnowledge of authentication modelsBasic understanding of device management conceptsExperience syncing Active Directory identitiesFamiliarity with Entra Password ProtectionBasic understanding of Active Directory Certificate Services (AD CS)Familiarity with Defender for IdentityUnderstanding of Active Directory security principlesExperience remediating security assessment findingsAbility to tune audit policiesKnowledge of event forwardingUnderstanding password policy best practices, including fine-grained password policiesExperience applying security baselinesCompany OverviewJDA TSG is a management consulting company specializing in program management & process re-engineering services. It was founded in 2011, and is headquartered in New York, New York, USA, with a workforce of 501-1000 employees. Its website is http://jdatsg.com.