Why SoftwareOne? Success at SoftwareOne is not defined by what you do for yourself, but by what you deliver for our customers, the business and for the employees around you. SoftwareOne employees are energized, agile and are laser focused on delivering world class Customer Satisfaction and results. Our leaders motivate and inspire their teams and provide a working environment that delivers incredible levels of Employee Satisfaction. We are Humble. Our leaders operate with a high level of Discipline but can work at Speed manage change in a global economy. We are a leading global provider of end-to-end software and cloud technology solutions, headquartered in Switzerland. Our 8,700 employees support our approximately 65,000 customers in their digital transformation. The role We are thrilled to announce an opportunity to join our team as: Platform Specialist- Active Directory (AD) SoftwareOne Scope: Full-time | Office: Medellín | Hybrid How a day to day would look like in this role: + Help clients achieve optimal Active Directory (AD) implementation and administration, analyzing and documenting their requirements. + Act as a subject matter and implementation expert for the client regarding the technical architecture and implementation of the proposed solution using cloud services. What we need to see from you Profile: Systems Engineer with proven experience leading the administration, design, implementation, and support of mission-critical Microsoft infrastructure platforms. Strong expertise in hybrid identity solutions, secure authentication, certificate management, and enterprise services across on-premises and cloud environments (Azure/Entra ID). Required skills: Active Directory (AD) + Design and implementation of forests, domains, and trust relationships. + Advanced administration of FSMO roles, replication (REPADMIN, DCDIAG), and Sites & Services. + Development and hardening of GPO policies (AppLocker, BitLocker, software restriction). + Troubleshooting of Kerberos/NTLM authentication, LDAP(S), SMB, and NLA. PKI (Public Key Infrastructure) + Deployment and administration of Microsoft AD Certificate Services (AD CS). + Design of certificate hierarchies (Root CA/SubCA) and issuance policies. + Support for Smart Card Logon, LDAPS, code signing, VPN, and WiFi certificates. + Automation using Autoenrollment and certificate templates; integration with HSMs and third-party systems. ADFS (Active Directory Federation Services) + High-availability implementation of ADFS and Web Application Proxy (WAP). + Configuration of claims-based authentication and Relying Party Trusts. + Integration with SaaS applications (O365, Salesforce, SAP, etc.). + Troubleshooting of tokens, expired certificates, and MFA configuration. Microsoft Entra ID (Azure AD) + Identity synchronization using Azure AD Connect. + Design of hybrid and federated identity solutions. + Management of Conditional Access, MFA, SSPR, and Privileged Identity Management (PIM). + Monitoring with Entra ID logs, risk analysis, and identity protection. + Experience with Entra ID Domain Services (AADDS). Windows Server and Core Roles + Administration of Windows Server (2012 R2, 2016, 2019, 2022). + Management of core roles: DNS, DHCP, NTP, File Server, Failover Cluster, Print Server. + System updates, critical patch review, and maintenance plans (PMP). + Task scheduling, service management, log analysis, and local policies. + Integration with ITSM tools and CMDB systems. Tools and Scripting + Advanced PowerShell scripting (automation, reporting, infrastructure validation). + Proficient in RSAT, ADSIEdit, LDP, DCDIAG, NETDOM, PKIView, SChannel logs. + Experience with monitoring tools (SCOM, PRTG, Azure Monitor). + Skilled in ITSM platforms (ServiceNow, ManageEngine), change management, and incident handling. Security and Governance + Implementation of hardening best practices for AD, ADFS, and PKI. + Compliance with industry security standards. + Participation in IT audits and support for regulatory compliance. Certifications + Microsoft Certified: Identity and Access Administrator Associate (Entra ID) + Microsoft Certified: Windows Server Hybrid Administrator Associate + Microsoft Certified: Security, Compliance, and Identity Fundamentals + ITIL v4 Foundation + Microsoft 365 Certified: Enterprise Administrator Expert (in progress / desirable) BENEFITS: + Direct and indefinite-term employment. This demonstrates our interest in building stable and long-term relationships. + With our program Transformation Academy and other training and certification spaces, you will have the opportunity to develop your potential in a personalized way and in accordance with your objectives within the role. + A SURA Health Insurance for you and preferential rates for your family. + Payment of 100% disability and sick-leave benefits. + Access to ReferOne: this is a referral program that gives you the opportunity to earn a financial incentive by referring a friend or acquaintance to our company.a + You will be part of one of the most competitive Employee Funds in the industry where you will have access to savings, credits, and special agreements with allied brands. + Accompaniment for your English language learning. + Spaces for leisure, celebrations, and recreation for your physical and mental health. + Days off for wedding, and graduation days At SoftwareOne, we are committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and teammates without regard to race, color, religion, age, sex, national origin, disability status, genetics, sexual orientation, gender identity or expression, or any other characteristic protected by local laws. Job Function Software & Cloud Services Accommodations SoftwareOne welcomes applicants from all backgrounds and abilities to apply. If you require reasonable adjustments at any point during the recruitment process, email us at reasonable.accommodations@softwareone.com. Please include the role for which you are applying and your country location. Someone from our organization that is not part of the decision-making process will be in touch to discuss your specific needs and we will make every effort to accommodate you. Any information shared will be stored securely and treated in the strictest of confidence in line with GDPR. Required Skill Profession Other General