Identity and Security Administrator

Greenberg Traurig (GT), a global law firm with locations across the world in 15 countries, has an exciting employment opportunity for you. We offer competitive compensation and an excellent benefits package, along with the opportunity to work within an innovative and collaborative environment.

Join our Technology Team as an Identity and Security Administrator located in various offices.

We are seeking a professional who thrives in a fast-paced, deadline-driven environment. The ideal candidate possesses strong problem-solving and decision-making abilities, ensuring efficiency and accuracy in every task. With a dedicated work ethic and a can-do attitude, you will take initiative and approach challenges with confidence and resilience. Excellent communication skills are essential for collaborating effectively across teams and delivering exceptional client service. If you are someone who demonstrates initiative, adaptability, and innovation, we invite you to join our team.

This role can be based in various offices, on a hybrid basis. This role reports to the Enterprise Monitoring and Systems Management Supervisor.

Position Summary

The Identity & Security Administrator is responsible for managing and maintaining the security and monitoring of the firm’s core identity services and hybrid integrations with the Microsoft cloud ecosystem. The administrator implements and administers identity and access management solutions, troubleshoots and resolves technical issues, investigates and remediates identity-based security incidents, and ensures secure access to applications and resources. This role requires individuals who are trustworthy, reliable, and uphold strict ethical standards in all professional dealings. This position requires the ability to work flexible hours and participate in on-call rotation.

Key Responsibilities

• Manages, optimizes, and maintains enterprise identity platforms (e.g. Active Directory Domain Services, Entra ID)

• Implements secure IAM frameworks in Entra ID and Azure, including roles, RBAC, PIM, conditional access policies, MFA, and SSO

• Manages and optimizes non-human identity and permissions lifecycle processes

• Collaborates with technology teams to ensure least privilege, JIT access models, and access lifecycles across on-premises and cloud environments

• Conducts regular access reviews

• Monitors and audits user activity to identify and evaluate anomalous behavior and activity, and coordinates with other IT staff and external parties as needed

• Manages vendor remote access and privileged access management systems

• Monitors and analyzes performance, availability, and security alerts for servers, applications, and services, using various tools and methods, such as dashboards, alerts, reports, logs, etc.

• Monitors, detects, and responds to security incidents and threats related to identity and access using ITDR, EDR, and SIEM tools

• Provides Tier 3 technical support, root cause analysis, and guidance for identity-related issues

• Implements and maintains security configurations to protect against unauthorized access and other security threats against the firm’s on-prem infrastructure and cloud-based platforms

• Develops and maintains automation scripts to automate administrative and routine tasks and process improvement

• Collaborates with information security and compliance teams to ensure compliance with industry standards

• Supports project delivery and execution of tasks related to areas of team responsibility

• Stays current with emerging trends and best practices in identity and access management, identity protection and governance, and cloud security

• Documents and enforces identity governance procedures

Qualifications

Skills & Competencies

• Strong expertise in AD DS, Microsoft Entra Suite, DFS, ADFS, ADCS, and LDAP

• In-depth knowledge in identity and access management and role-based access control concepts

• Expertise in identity federation and multifactor authentication management

• Expertise in authentication and authorization flows

• In-depth knowledge of public key infrastructure (PKI) and encryption

• Strong knowledge of Zero Trust security principles

• In-depth knowledge of Microsoft Windows operating systems

• Good working knowledge of basic networking concepts, including TCP/IP, DNS, and DHCP

• Solid scripting skills in PowerShell Microsoft Graph PowerShell, and Microsoft Graph API

• API programming skills are preferred

• Basic understanding of AI model infrastructure security is preferred

• Strong analytical, critical thinking, and problem-solving skills

• Ability to troubleshoot and resolve system, application, security, and performance issues

• Strong communication, interpersonal, and cross-functional collaboration skills

• Ability to articulate issues, risks, and proposed solutions to various levels of technology staff, management, and non-technical audiences

• Strong attention to detail and accuracy

• Ability to document and maintain security and monitoring policies, procedures, and configurations

• Ability to multitask efficiently yet prioritize and organize competing work demands

• Demonstrated integrity and commitment to strict ethical standards in all professional dealings

• Proven record of reliability and dependability

• Candidate must be a self-starter and independent, yet function as an integral part of a team

• Proven ability to work independently and collaboratively in a fast-paced, and security-conscious environment

• Candidate must demonstrate a high degree of initiative and motivation

• Ability to work flexible hours and be on-call

Education & Prior Experience

• Bachelor’s degree in Computer Science or related field, or equivalent work experience

• 7+ years of professional experience managing medium-to-large enterprise Microsoft Windows AD DS environments, preferably in a law firm or professional services environment

• 3+ years of experience with Microsoft Entra ID in hybrid environments

• Extensive experience managing and securing all aspects of Active Directory Domain Services

• Considerable hands-on experience with Azure/Entra ID cloud security, including, but not limited to conditional access, RBAC, Defender for Endpoint, Defender for Cloud, and Defender for Identity

• Experience managing multifactor authentication solutions and single sign-on implementations

• Experience managing Privileged Access Management tools

• Relevant Microsoft certifications: Azure Security Engineer Associate and Identity and Access Administrator Associate, or equivalent are preferred

• Professional cybersecurity certifications, such as Security+, GSEC, GCIH, etc., are preferred

GT is an EEO employer with an inclusive workplace committed to merit-based consideration and review without regard to an individual’s race, sex, or other protected characteristics and to the principles of non-discrimination on any protected basis.