Azure Cloud:
- Administration and further development of the entire Azure environment, incl. Azure Virtual Desktop, Azure Virtual Machines, storage and network resources.
- Administration of Microsoft Entra ID (formerly Azure AD), implementation and optimization of RBAC/PIM, MFA, Conditional Access Policies and other security features.
- Setup and administration of Azure security services and enterprise apps.
- Design and implementation of Azure compute, storage and networking solutions
- Monitoring and optimization of Azure resources, including performance monitoring and cost management
- Automation of Azure processes using PowerShell, Azure CLI, ARM templates or Terraform.
- Administration of the Microsoft 365 Admin Center and associated services such as Exchange Online, SharePoint Online and OneDrive for Business.
- Setup and administration of Microsoft 365 Defender services, including Defender for Endpoint, Identity and Office 365.
- Management of Microsoft 365 licenses and user permissions
- Configuration of compliance and data protection settings according to company requirements.
- Management and optimization of Windows servers (2016, 2019, 2022, 2025) as well as Active Directory and forests (>10,000 AD objects), including VDI solutions, AD replication, group policies (GPOs) and DFS.
- Support and configuration of file server clusters and SQL server services.
- Administration and configuration of domain controllers.
- Administration of our distributed Windows servers and Microsoft services (such as DNS, DHCP, file clusters, domain controllers).
- Working according to (ITIL) process specifications, work instructions, as well as legal requirements.
- Automation of IT processes using PowerShell and other scripting technologies.
- Planning, implementation and technical management of infrastructure projects.
- Creating and updating technical documentation.
- Developing proposals for improving IT security in the area of tasks and responsibility and implementing them after release/approval.
- 2nd/3rd level support for the systems and applications managed by the team.
- Participation in the IT on-call service.