Posted: 01-Mar-25
Location: Los Angeles, California
Categories:
Internal Number: 146474525
This position focuses on secure messaging, collaboration, authentication, identity management, and mobility solutions. Key responsibilities include discovering, building, implementing, and supporting enterprise messaging and email security solutions. Operational tasks involve completing service requests, handling incident tickets, performing system maintenance, applying patches, configuring systems, creating and adhering to standard operating procedures, staff training, and documentation. Participation in a 24/7 on-call rotation for after-hours support is required.
Messaging Responsibilities:
- Infrastructure Management: Design, implement, and maintain UCLA Health’s messaging infrastructure, focusing on Microsoft Office 365 Exchange Online and Proofpoint administration.
- Email Security: Manage and maintain email security systems, including SPF, DKIM, DMARC, spam, virus and content filtering, URL rewriting, and attachment scanning.
- Client Solutions: Design and maintain client solutions in line with IT infrastructure and security policies.
- System Optimization: Develop, implement, and optimize messaging systems.
- Performance Monitoring: Monitor server performance and mail routing.
- User Management: Create user accounts and manage access levels.
- Support and Troubleshooting: Provide third-level support, troubleshoot complex issues, and serve as an escalation point for messaging services.
- Documentation and Training: Document policies, develop end-user training, and maintain SOPs and knowledge bases.
- Lifecycle Coordination: Coordinate lifecycle refresh with the IT Client Infrastructure team and deskside group.
- Application Integration: Troubleshoot application integration and resolve operational issues.
- Cross-Departmental Interface: Interface with Product Development, Engineering, Legal, Privacy, Compliance, and Risk Management.
- Solution Development: Develop new solutions based on requirements and analysis.
- Mentorship: Mentor peers and junior team members in messaging security and enterprise solution design.
- Technical Expertise: Provide expertise in mobility technology, enterprise authentication, email infrastructure, and identity management.
- Process Improvement: Research and recommend tools to improve technical processes.
- Communication: Communicate technical information clearly to customers and provide status updates on projects and operational tasks.
- Escalation: Escalate issues to the manager or lead as needed.
- Vulnerability Management: Address and resolve vulnerabilities, apply Windows patches for IMS-managed systems and applications within SLA, and coordinate with vendors as needed.
Directory Services Responsibilities:
- Enterprise Directory Management: Oversee enterprise directory services, primarily Microsoft Active Directory and Entra ID.
- Support and Administration: Support, manage, secure, and administer the directory environment.
This flexible hybrid role allows for a blend of remote and on-site work, requiring presence on-site at least twice a week or as needed based on operational requirements. Please note, travel to the "home office" location is not reimbursed. Each employee will complete a FlexWork Agreement with their manager to outline expectations and ensure mutual understanding. These arrangements are periodically reviewed and may be adjusted or terminated as necessary.
Salary offers are based on a variety of factors including qualifications, experience, and internal equity. The full salary range for this position is $92,600 - $202,200 annually. The University anticipates offering a salary between the minimum and midpoint of this range.
· Knowledge of Microsoft Networking, Active Directory, and Entra ID.
· Strong expertise in Microsoft Exchange Server and Messaging Platforms.
· Strong knowledge of Microsoft Office 365 (Teams, Exchange Online).
· In-depth understanding of email security and authentication measures (SPF, DKIM, DMARC).
· Significant experience with email delivery and security platforms, including message/spam filtering, transport threats and vulnerabilities, antivirus, phishing, and antimalware
· Understanding of Identity and Account Lifecycle Management.
· Experience with Windows Server 2016, 2019, and Windows 2022.
· Knowledgeable about DNS, DHCP, WINS, and TCP/IP.
· Basic understanding of authentication protocols such as SAML, OAuth, and LDAPS.
· Experience with multifactor authentication (MFA) solutions.
· Understanding of Windows Client workstation systems.
· Capable of troubleshooting complex issues, including identifying, analyzing, and developing effective solutions promptly.
· Ability to prepare detailed project plans, presentations, procedures, diagrams, and other technical documentation.
· Knowledgeable in Microsoft Office products, including but not limited to Office 2016, Office 2019, and MS365.
· Excellent writing and communication skills.
· Familiarity with ticketing systems, change control methodologies, as well as knowledge of ITIL overview.
· Familiarity with desktop applications.
· Capable of working independently with minimal supervision and in a team environment.
· Ability to research and test new technologies and processes.
· Establishing standards and procedures for best practices.
· Knowledgeable in security best practices in large-scale environments.
· Ability to prioritize, organize, and execute tasks in a high-pressure environment.
· Ability to communicate the status of various systems to management and/or support personnel.
