Expert Engineer, Active Directory / Entra ID / O365 / IAM (CyberArk)

Disclaimer:

As part of the transition following the sale by Finastra of the Teciem business, Finastra is supporting Teciem on a temporary basis by managing the end‑to‑end recruitment process for this position, including advertising, candidate outreach, interviews and selection. While certain points of contact in the hiring process will be Finastra staff, the successful candidate will be employed within the Teciem business and will carry out their role solely for Teciem.

The Work We Do

Teciem designs, builds, and delivers treasury and capital markets software solutions for financial institutions worldwide. We serve banks of every size and geography, offering the right setup for the right need.

Our solutions are designed to replace multiple disconnected systems with one complete, front-to-back platform, helping customers to capture trading and business opportunities quickly, clearly and with control. We cover the entire trading lifecycle, ensuring that everything - from execution to position keeping, to risk management – runs smoothly.

With decades of experience and one of the largest, most diverse client bases in the industry, we turn deep industry knowledge into software that covers most asset classes, meets complex real-world treasury and capital market's needs, and adapts as markets evolve.  

What will you contribute?

As Expert Engineer for Active Directory, Entra ID, Microsoft 365, and IAM (CyberArk) you will play a central role in ensuring the reliability, security, and evolution of the company’s identity and collaboration platforms. You will act as a technical referent, expert supports IT, Cybersecurity, and business teams in designing, securing, and operating Microsoft environments and privileged access solutions.

Key contributions include:

• Ensuring stability, performance, and security of identity platforms (Active Directory, Entra ID).
• Configuring applications access through LDAP- based authentication and Azure/ Entra ID
• Administrate Microsoft 365 services (Exchange Online, Teams, SharePoint…).
• Supporting and enhancing the Privileged Access Management (PAM) platform, particularly CyberArk.
• Providing Level 3 expertise for complex incidents across the Microsoft and IAM ecosystem.
• Participating in transformation projects involving cloud adoption, authentication security (MFA, Conditional Access), and automation.

Responsibilities & Deliverables:

Active Directory & Entra ID

• Administer, secure, and optimize Active Directory (GPOs, Sites & Services, DNS, delegation models).
• Administer corporate applications access ( Ldap/ Azure Entra ID)
• Manage Entra ID (Azure AD): synchronization (AD Connect), RBAC, Conditional Access, MFA policies.
• Implement and maintain security and hardening standards for identity environments.
• Oversee identity lifecycle management, privileged accounts, service accounts, and group structure.

Microsoft 365 (O365)

• Administer Exchange Online: transport rules, mail flow, connectors, anti-spam/anti-phishing.
• Provide advanced support for Teams, including voice, collaboration, and governance aspects.
• Manage SharePoint Online site collections, permissions, access policies.
• Apply compliance and security policies: DLP, retention labels, auditing, eDiscovery, data governance.

IAM / PAM (CyberArk)

• Support the operation and evolution of the CyberArk platform.
• Integrate applications, safe structures, privileged accounts, and automation processes.
• Contribute to onboarding/offboarding workflows for sensitive access.

Support & Expert Assistance

• Deliver Level 3 technical support across AD/Entra/M365/IAM environments.
• Troubleshoot complex authentication, synchronization, or workload-related issues.
• Assist internal teams with escalations and technical guidance.
• Participate in on-call rotations when required.

• Documentation & Governance
• Produce and maintain technical documentation, architecture diagrams, and operating procedures.
• Contribute to security posture improvement and operational excellence.
• Define and enforce standards for identity management, naming conventions, and access governance.

Expected Deliverables

• Identity & M365 architecture documentation
• Configuration baselines and automated scripts (PowerShell)
• CyberArk safe/account configurations and onboarding packages
• Technical procedures, runbooks, troubleshooting guides
• Regular security and compliance reports
• Project deliverables for migrations, hardening, and IAM improvements

Required Experience:

• Minimum 4 years of hands‑on experience administering and securing Active Directory environments (GPOs, DNS, OU structure, replication, hardening).
• Proven experience managing Entra ID (Azure AD), including Conditional Access, MFA, RBAC, application integrations, and identity lifecycle management.
• Solid operational experience administering Microsoft 365 workloads, including Exchange Online, Teams, and SharePoint Online.
• Practical experience working with IAM/PAM solutions, ideally CyberArk (Vault, PSM, onboarding of privileged accounts and applications).
• Strong background supporting authentication mechanisms such as LDAP, Kerberos, NTLM, OAuth2, SAML, and configuring application access via LDAP directories or Azure/Entra ID.
• Demonstrated success in delivering Level 3 support for complex identity, authentication, and M365 issues.
• Hands-on experience with PowerShell scripting for automation, provisioning, and reporting.

Diverse Minds, Shared Ambition

At Teciem, we believe that our strength comes from the diversity of our people. Different perspectives, backgrounds, and experiences fuel our innovation and help us build solutions that truly make a difference in the world of financial technology.

We’re committed to creating a workplace where everyone feels respected, heard, and empowered to grow. Here, you can bring your whole self to work, contribute your unique ideas, and be part of a team driven by shared ambition.

We welcome talent from all walks of life and encourage applications from individuals of all genders, races, ages, abilities, identities, and beliefs. Together, we’re shaping a culture where diversity isn’t just celebrated — it’s essential to our success.