This position is an Individual Contributor role. The role directly reports to the Director, Information Technology Infrastructure and routinely interacts with Global IT / Global Business Leads / Project Management / Engineering / Operations.

Responsibilities

· Execute a wide range of infrastructure initiatives, including deploying and integrating technologies across the global enterprise.

· Design, implement, and maintain secure, scalable, and resilient on-premises and cloud environments.

· Design, implement, and manage solutions for Office 365, Azure, Hybrid environments, Email services, Microsoft Teams, Single Sign-On (SSO) integrations, LDAP integrations, Cloud, Serverless compute, virtualization, SaaS, Public Key Infrastructure (PKI) certificate management, as well as authentication and authorization frameworks.

· Formulate and execute strategic initiatives ensuring the ongoing health, stability, and resiliency of email, Microsoft Teams, Active Directory, Azure Entra ID, cloud services, and Identity and Access Management ecosystems.

· Develop and execute a strategic vision for the CB&I Information Technology practice by leveraging innovative technologies, establishing best practices across infrastructure and application integration, and driving continuous improvement to optimize service delivery and customer satisfaction.

· Design and implement integration services with Third-Party Systems including cloud services, federated services, Active Directory, SSO, application integrations, email, SaaS, IaaS, virtualization, automation, security systems, and identity management platforms.

· Adapt leading security frameworks, including CIS Benchmarks, AWS Foundational Security Best Practices (FSBP), and Microsoft Cloud Security Benchmark (MCSB), to enhance cybersecurity effectiveness.

· Engineer, deploy, and operate security tools to enable visibility, control, and operational effectiveness.

· Develop and implement robust security policies and processes in collaboration with the Cybersecurity team.

· Develop, review, maintain, and disseminate comprehensive and accessible documentation including configuration details, changes, troubleshooting guides, standard operating procedures, business processes, and runbooks to ensure operational clarity and compliance.

· Collaborate with IT teams, third parties, and cross-organizations to gather business requirements, assist with business plan development, and implement technologies such as integrated innovative infrastructure, IaaS, cloud solutions, and applications, ensuring seamless and future-ready operation across the organization.

· Leverage expertise in cloud governance and network infrastructure frameworks to develop and enforce policies and procedures that support continuous improvement and compliance.

· Collaborate closely with stakeholders to define and validate technology opportunities that align with current and future product capabilities while guiding successful execution from planning through delivery.

· Serve as a subject matter expert within your area of responsibility mentoring members of the global IT organization, delivering technical and operational cross-training, and providing advanced support for problem-solving and root cause analysis.

· Design and implement predictive and preventive system maintenance techniques including lifecycle management strategies.

· Collaborate with stakeholders to author and execute disaster recovery and business continuity plans.

Qualifications

· Minimum bachelor's degree in computer science, Computer Engineering, Management Information Systems or related field or equivalent work experience.

· Preferred 15 or more years of experience in Information Technology Infrastructure.

· 8 or more years of experience in a leadership role within a technology services organization, with a strong focus on Microsoft Azure, cloud environments, Active Directory, Hybrid environments, O365, Microsoft Teams, email, MTA, SaaS services, IAM, security controls, and third-party integrations.

· Experience planning and migrating acquisitions, divestitures, and on-perm systems to SaaS and cloud services.

· Comprehensive understanding of on-prem and Azure Active Directory architecture, features, and functionalities including domains, sites, replication, GPOs, and Kerberos authentication.

· Extensive experience designing, implementing, and maintaining Office 365, Azure Tenant, and Microsoft Teams in a hybrid/Azure environment.

· Demonstrate knowledge of security principles designing and implementing robust Active Directory, Azure, O365, email, and third-party security configurations.

· Proven track record of successfully leading and growing Azure-focused technical services teams.

· History of delivering tier 3 and tier 4 support across email, MTA, Microsoft Teams, Active Directory, Azure Entra ID, cloud services (Azure and AWS), identity and access management ecosystems, server deployment, capacity management, and hybrid on-prem AD services including authentication, DFS, GPO, and LDAP with strong expertise in Active Directory.

· Proficient in creating and modifying transport rules, security policies, DMARC, DKIM, and SPF

· Deep exchange knowledge proficiency in managing mailboxes, delegation, shared mailboxes, mail flow rules, SMTP, spam protection implementation, and distribution lists.

· Well-versed in designing and implementing high-availability solutions for uninterrupted email services, Active Directory, Azure, and cloud environments.

· Integrating Identity Access Management (IAM) solutions in cloud environments. AWS, Azure, GCP, and other cloud environments.

· Demonstrated proficiency in security protocols and standards such as SAML, OAuth, OpenID Connect, LDAP, and SCIM.

· Proficiency and knowledge of automation tools and scripting languages (e.g., Python, PowerShell/Automate, Power BI) for automating and managing of Active Directory, Azure, Email, O365, and reporting.

· Proven ability to diagnose and resolve complex Active Directory, Azure, Hybrid environments, O365, Microsoft Teams, and third-party integrations related to user access, synchronization, and security.

· Demonstrated ability to combine strategic governance principles such as Microsoft Cloud Adoption Framework (CAF) and AWS Well-Architected framework with practical implementation to optimize cost, resource management, security, compliance, identity and access controls, and operational excellence.

· Experience with backup, recovery, and replication techniques.

· Background in server performance tuning, optimization, monitoring, and automation.

· Experience in Virtualization and VMWare performance tuning, optimization, monitoring, and automation.

· Familiarity with configuring and implementing cloud databases and environments (e.g., AWS, Azure).

· Familiarity with reporting tools (e.g., Power BI, Entra, O365 Audit and compliance Reports, Device Management).

· Demonstrated ability to define multi-year cloud strategy and roadmaps, balancing innovation, and operational stability.

· Experience with implementing, managing, maintaining, and troubleshooting on-prem and cloud email systems including Mail Transfer Agents.

· Experience with securing Azure and Active Directory resources using role-based access controls, conditional access, and least privilege principles.

· Proven track record of architecting and deploying Active Directory domains, Azure Entra ID, Azure tenant, forests, and trusts, including site design, replication strategies, and security configurations.

· Preferred certifications: Azure Solutions Architect, MS Cybersecurity Architect, AWS Cloud Solutions Architect, MS IAM

Skills and Behaviours

· In addition to providing technical leadership, build and nurture strong partnerships across business, engineering, security, and operations teams, consistently upholding the organization's vision, core values, and business principles.

· Proactively embraces and promotes the company's values and culture, including diversity & inclusion and a healthy and safe work environment

· Analytical problem-solving skills and attention to detail

· Must have excellent organizational, project management, and communication skills.

· Ability to work in a collaborative team environment and communicate complex technical concepts effectively.

· Strong knowledge of IT infrastructure, systems, cybersecurity, and emerging technologies

· Deliver exceptional customer service by combining strong customer focus with initiative-taking communication, responsiveness, and technical expertise.

· Demonstrated understanding of Identity and Access Management concepts, including authentication, authorization, SSO MFA, and federation.

· Must be able to successfully work on multiple projects simultaneously and work under tight deadlines in a results-oriented environment.

· Ability to think creatively and develop solutions quickly in critical environments.

· Leverages collaboration skills to solve problems with global peers across various functions.

· Possess strong verbal & written communication skills in English, with demonstrated experience in effectively speaking to all levels of the organization including executive level, SMEs (Subject Matter Experts), and Principal Technologists.

· In depth understanding of recovering Active Directory, cloud technology, integrated solutions, and infrastructure components in a DR situation.