Alternate Locations: Work from Home
Work Arrangement: Remote : Work at home employee residing outside of a commutable distance to an office location.
Relocation assistance: is not available for this opportunity.
Requisition : 74470
The Role at a Glance This position will provide subject matter expertise and direction on complex projects/initiatives. Responsibilities of this Engineer/Administrator role include designing, managing, maintaining and securing LFG's (Lincoln Financial Groups) Active Directory, Active Directory Certificate Services, and Forest-Domain-Trust management. This role will have exposure working with application and service owners to adopt modern authentication patterns such as SAML and Oauth along with supporting legacy authentication. Finally, the role includes Domain Services monitoring and alerting responsibilities; assisting in ITDR exercises; automating where opportunities arise; and support for our Security and Enterprise departments by implementing and enforcing regulatory compliance and standards adherence.
What you'll be doing - Serve alongside other technical experts managing, designing and operationalizing LFG's IDP; Active Directory, Microsoft Entra (Azure Active Directory)
- Drive LFG's application integrations to utilize modern auth while supporting legacy authentication protocols securely.
- Tier 4 support for Application Registration (Oauth/OIDC)/Enterprise Application Registration (SAM) operations as needed.
- Work closely with Security and Enterprise Architecture to design enterprise compliant solutions.
- Act as a subject matter expert for projects involving hybrid Active Directory/Entra ID environments.
- Support Public-Key-Infrastructure with Active Directory Certificate Services and Key Factor integrations.
- Lead troubleshooting and incident resolution for complex, high-severity incidents.
- Develop and implement automated solutions to enhance security and operational efficiency.
- Collaborate with Managed Service Providers (MSPs) operations support and provide support to the team.
- Create and maintain internal documentation and share knowledge with the team.
- Present engineered solutions to Architecture and Peer Review Boards
- Partner with cross-functional teams including security, infrastructure, and application owners to ensure seamless integration of authentication solutions.
- Maintains knowledge on current and emerging developments/trends, assesses the impact, and collaborates with senior management to incorporate new trends and developments in current and future solutions.
- Directs and enhances organizational initiatives by positively influencing and supporting change management and/or departmental/enterprise initiatives.
- Identifies and directs the implementation of process improvements that significantly improve quality across the team, department and/or business unit.
- Provides subject matter expertise to team members and applicable internal/external stakeholders on complex assignments/projects.
- Configures, installs, maintains and performs upgrades to Domain Controllers, Certificate Authority Servers and Active Directory Domains.
- Serves as a subject matter expert to administer and maintain security of Active Directory, EntraID and PKI infrastructure.
What we're looking for Must Haves (Required): - 10+ years' experience in related role with Active Directory, Entra ID (Azure Active Directory)
- Expert knowledge with Directory Services protocols legacy and modern (LDAP, Kerberos, NTLM, SAML, OAuth, Auth0, etc)
- 5+ extensive experience with Azure Application registrations and Enterprise Application Registrations, and graph APIs.
- Proficiency in scripting and automation using PowerShell and MS Graph
- Strong troubleshooting in Windows Server, Active Directory and authentication-related issues.
- In-depth experience conducting Active Directory Disaster Recovery exercises.
- Deep understanding of Active Directory Sites-&-Services
- Proven experience in AD hardening, Forest-Domain-Trust Management for day-to-day operations with an eye on securing Active Directory for the future.
Nice to Haves (Preferred): - Service-Now experience (ITSM, CMDB, Workflow)
- Knowledge of Splunk utilization and queries a plus. (SEIM)
- Collaborate with Agile teams, utilizing Jira and Confluence to track engineering tasks, document processes and enhance collaboration.
Application Deadline Applications for this position will be accepted through May 16th, 2024, subject to earlier closure due to applicant volume.
What's it like to work here? At Lincoln Financial Group, we love what we do. We make meaningful contributions each and every day to empower our customers to take charge of their lives. Working alongside dedicated and talented colleagues, we build fulfilling careers and stronger communities through a company that values our unique perspectives, insights and contributions and invests in programs that empower each of us to take charge of our own future.
What's in it for you: - Clearly defined career tracks and job levels, along with associated behaviors for each Lincoln leadership Attribute.
- Leadership development and virtual training opportunities
- PTO/parental leave
- Competitive 401K and employee benefits
- Free financial counseling, health coaching and employee assistance program
- Tuition assistance program
- A leadership team that prioritizes your health and well-being; offering a remote work environment and flexible work hybrid situations
- Effective productivity/technology tools and training
The pay range for this position is $93,300 - $169,700 with
anticipated pay for new hires between the minimum and midpoint of the range and could vary above and below the listed range as permitted by applicable law. Pay is based on non-discriminatory factors including but not limited to work experience, education, location, licensure requirements, proficiency and qualifications required for the role. The base pay is just one component of Lincoln's total rewards package for employees. In addition, the role may be eligible for the Annual Incentive Program, which is discretionary and based on the performance of the company, business unit and individual. Other rewards may include long-term incentives, sales incentives and Lincoln's standard benefits package.
About The Company Lincoln Financial Group helps people to plan, protect and retire with confidence. As of Dec. 31, 2023, approximately 17 million customers trust our guidance and solutions across four core businesses - annuities, life insurance, group protection and retirement plan services. As of December 31, 2023, the company had $295 billion in end-of-period account balances, net of reinsurance. Headquartered in Radnor, Pa., Lincoln Financial Group is the marketing name for Lincoln National Corporation (NYSE: LNC) and its affiliates. Learn more at
Lincoln is committed to creating a diverse and inclusive environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.
Follow us on Facebook , X , LinkedIn (+financial%2Cidx%3A3-1-3&trk=tyah) , and Instagram . For the latest company news, visit our newsroom .
Be Aware of Fraudulent Recruiting Activities If you are interested in a career at Lincoln, we encourage you to review our current openings and apply on our website. Lincoln values the privacy and security of every applicant and urges all applicants to diligently protect their sensitive personal information from scams targeting job seekers. These scams can take many forms including fake employment applications, bogus interviews and falsified offer letters.
Lincoln will not ask applicants to provide their social security numbers, date of birth, bank account information or other sensitive information in job applications. Additionally, our recruiters do not communicate with applicants through free e-mail accounts (Gmail, Yahoo, Hotmail) or conduct interviews utilizing video chat rooms. We will never ask applicants to provide payment during the hiring process or extend an offer without conducting a phone, live video or in-person interview. Please contact Lincoln's fraud team at if you encounter a recruiter or see a job opportunity that seems suspicious.
Additional Information This position may be subject to Lincoln's Political Contribution Policy. An offer of employment may be contingent upon disclosing to Lincoln the details of certain political contributions . click apply for full job details