Microsoft Platform Support Engineer - Active Directory

Press Tab to Move to Skip to Content Link

Select how often (in days) to receive an alert:

Posting Date: 22 May 2025

Function: Software Engineering

Unit: Digital

Location:

Snowhill, Birmingham, United Kingdom

This role is based out of our Snowhill, Birmingham digital hub. We have a hybrid working model of 3 days in the office and 2 days remote.

You will be part of a dynamic team designing and implementing the Zero Trust Security Model to enhance BT’s security posture. You will work on Active Directory, Microsoft Entra ID (Azure Active Directory), and new data security and compliance tools such as MDI and MDE.

We are seeking a skilled and detail-oriented Active Directory professional to manage, maintain, and support our large enterprise Active Directory (AD) multi-forest environment. This role ensures the integrity, security, and efficient operation of our AD/Entra ID infrastructure across multiple domains and environments.

• Manage and maintain Active Directory (AD), including user accounts, groups, OUs, GPOs, DNS, delegation, AD-integrated services, and trust relationships.
• Configure and manage domain controllers (demote/promote), replication, and forests/domains.
• Configure and manage Certificate Authority and secure certificate templates, with an understanding of PKI infrastructure.
• Monitor system performance, availability, and security using relevant tools.
• Implement and enforce security policies in line with IT best practices and compliance standards.
• Troubleshoot and resolve AD-related issues, including login problems, replication errors, and access control issues.
• Plan and execute changes to AD infrastructure, including migrations, upgrades, and disaster recovery.
• Collaborate with IT teams on access management, SSO, SailPoint, and identity federation solutions.
• Document AD configurations, processes, and procedures.
• Improve Active Directory security posture by implementing controls like MDI, CrowdStrike, Qualys, and patch management.
• Write PowerShell scripts to generate reports and explore new Active Directory and Microsoft Entra ID (Azure AD) security features for implementation.

Must Have:

• In-depth knowledge of Microsoft Active Directory and Entra ID (Azure AD), including Microsoft Entra ID Connect (AD Connect).
• Proficiency with AD backup tools such as Quest RMAD.
• Experience configuring and managing ADFS for federation services.
• Ability to troubleshoot and resolve AD Connect sync issues.
• Knowledge of Identity Protection, Conditional Access Policies, Privileged Identity Management, SSPR, and RBAC.
• Expertise in authentication protocols like Kerberos, SAML, OAuth 2.0, OIDC.
• Familiarity with MDI.
• Ability to write PowerShell scripts as required.
• Experience with migration tools such as ADMT, Quest Migration, or others.
• Relevant Microsoft certifications (e.g., MCSA, MCSE, Azure Administrator Associate).
• Experience working with ServiceNow incidents, requests, and change management.
• Knowledge of Active Directory security and vulnerability remediation.

Benefits include:

• Annual bonus of 10% (personal and company multipliers)
• BT Pension scheme with a minimum 5% employee contribution and 10% BT contribution
• Life Assurance
• Exclusive discounts on BT broadband, EE mobile plans, and other retail offers
• Access to discounts via My Discounts
• Discounted EE TV and entertainment memberships
• Support for working parents, including paid leave options
• Options for healthcare benefits like dental insurance and gym memberships
• 25 days annual leave, increasing with service, with buy holiday options
• Volunteering days
• Electric vehicle salary sacrifice scheme ('My EV')

Our Values and Culture

Leading inclusively and safely: Inspiring trust through honesty and integrity.
Owning outcomes: Making decisions that benefit the organization.
Delivering for the customer: Executing on priorities that add value.
Being commercially savvy: Demonstrating strong commercial focus.
Growth mindset: Embracing opportunities for growth.
Building for the future: Developing diverse, future-ready teams.

About us

BT Group is a pioneering telecommunications company with a rich heritage. We are investing in the UK’s largest digital infrastructure project, connecting over 25 million premises with full fibre broadband, and advancing 5G technology. We focus on simplifying systems and processes, leveraging AI and technology, to create the UK’s best telco and enhance customer experiences. We are committed to diversity, inclusion, and creating a workplace where everyone can thrive. We welcome applications from all backgrounds and encourage those who may not meet every criterion to apply, as we value diverse perspectives and experiences.