Aqueduct technologies is seeking a Senior Infrastructure Systems Engineer for their customer, a well-established Boston, MA based financial institution. This position is part of the core Infrastructure team responsible for the organizations managed platforms. The Senior Infrastructure Systems Engineer will be responsible for designing, configuring, and deploying Infrastructure systems leveraged by all teams. This position will work closely with Systems teams, Developers and Analysts to implement scalable performing solutions. They will be responsible for automating tasks, documenting, and handing off those tasks to Operational teams. This position will be heavily involved in the analysis, design, implementation, and maintenance of all identity, authentication, authorization systems, including Duo, OneLogin, MS ADFS, Active Directory, etc. Prior experience implementing SAML, OAuth, OpenID solutions is required. Knowledge of authentication/authorization principles, user account provisioning/management, user permissions through groups, and user lifecycle management are desired. Prior experience automating solutions in this area are a plus.Essential Responsibilities:Work with IT teams to document and implement technical solutions to meet the business requirementsProvide Level 3 support to resolve escalated issues and as required in root cause discovery of production impacting eventsThe ability to create automated scripts & documentation for reoccurring tasks (Powershell, Python, Ansible)Review and enhance documentation for troubleshooting and resolution procedures for all levels of supportProvide cross training to other operations engineers as requiredOccasional evening or weekend work requiredQualifications:5+ years relevant experience designing, implementing, and managing Active Directory environmentsExperience with enterprise deployments of Microsoft technologies (e.g. Windows, Windows Server, Active Directory). Experience with Kerberos troubleshooting and understanding Kerberos issues.Architecting, implementing, and securing Windows Active Directory infrastructures in a multi forest/multi domain environment spanning datacenters and cloud providers. (DNS, DHCP, Sites and Services topology, Certificate Services, replication and reliability monitoring)Proven technical expertise resolving complex problems across a broad range of Microsoft and in house developed applications (Active Directory, Exchange 2016, SQL, IIS, C#, .NET)Ensure lifecycle management of operating systems using Group Policy, SCCM, WSUS, and vulnerability assessment and remediation solutions (Rapid7, Qualys)Troubleshooting tools for authentication issues (Wireshark, HTTP Tracing tools and log analysis)Single Sign On Protocols (SAML, OAuth, OpenID) and Products (OneLogin, ADFS)Public Key Infrastructure (PKI), X.509 certificates, SSL/TLS, Certificate lifecycle management and tracking/rotationAbility to work independently, develop long term strategic Infrastructure enterprise goals and create a technology roadmapAbility to communicate well within and across teams; foster relationships throughout the organization and build trust amongst peers through demonstrated strong job performance.Experience with Office 365 (Exchange, Sharepoint, etc) preferred AWS experience especially with AWS IAM, SSO and AWS Certificate Manager preferredImplementation and Management of MDM solutions (Airwatch) preferredExperience with F5 LTM and GTM solutions preferredLinux administration experience preferredAqueduct Technologies, Inc. assists customers in finding top talent for their diverse staffing augmentation needs and providing technical solutions including deployment and support of advanced networking, systems, storage, and collaboration solutions to enable better business results. Aqueduct is one of the fastest growing IT services organization in the US, powered by our relentless pursuit of customer satisfaction, corporate culture, and employing the top 10% in the industry.