Create Alert
Apply now »
Requisition ID:  116964

Software Engineer

IT@JH Enterprise Directory and Messaging is seeking a Software Engineer who is responsible for designing, developing, and supporting automation and integration solutions for Johns Hopkins Enterprise Active Directory, Entra ID (formerly Azure AD), and Office 365 environments. This role will focus on building and enhancing software tools and scripts to manage identity and access management solutions, working closely with other teams to streamline and automate administrative tasks and ensure high availability and security of directory services.


Specific Duties & Responsibilities


Software Development & Automation

  • Develop PowerShell scripts and custom applications to automate tasks for Active Directory, Entra ID (formerly Azure AD), and Office 365.
  • Build and maintain tools to streamline administrative processes such as user provisioning, group management, and directory synchronization.
  • Create, test, and deploy software solutions to manage identity and access controls across on-premises and cloud environments.


System Integration

  • Design and implement solutions that integrate Active Directory, Entra ID (formerly Azure AD),, and Office 365 with other systems and services within Johns Hopkins.
  • Build APIs and tools to connect identity management solutions with third-party applications.
  • Collaborate with teams to implement federated services, Single Sign-On (SSO), and Multi-Factor Authentication (MFA).


Security & Compliance

  • Develop scripts to monitor and enforce security policies for directory services.
  • Automate security incident detection and response, integrating tools like Splunk for compromised account investigations.
  • Ensure software solutions comply with internal security policies and industry standards for identity, authentication, and access management.


Testing & Troubleshooting

  • Perform unit testing, integration testing, and system testing for automation scripts and software solutions.
  • Troubleshoot and resolve software issues related to identity management services and directory synchronization.
  • Continuously improve and optimize existing scripts and tools to enhance system performance and reliability.


Collaboration & Customer Support

  • Work closely with systems engineers, cybersecurity teams, and customers to gather requirements and translate them into technical solutions.
  • Provide documentation, training, and support for automation tools and processes developed for directory services.
  • Act as a technical resource for other teams regarding identity management automation and integration.


Cloud & Directory Services

  • Build solutions that support the management of on-premises Active Directory and Entra ID (formerly Azure AD), environments.
  • Automate tasks related to Office 365 services, such as policy configuration, role-based access controls, and license management.
  • Assist in implementing identity management solutions for Entra ID (formerly Azure AD), including Conditional Access and Role-Based Access Control (RBAC).


Specific Devices, Software, Projects

  • Active Directory and Entra ID (formerly Azure AD)
    • Develop scripts to manage user identities, groups, policies, and synchronization between on-premises and cloud environments.
  • Office 365
    • Build tools to automate Office 365 license management, user provisioning, and security settings.

  • PowerShell & API Development:
    • Use PowerShell for automation and API development to integrate identity services with other cloud and on-premises systems.
  • Splunk
    • Develop automated solutions to analyze compromised accounts and security events using Splunk.


Scale/size of Area, Project and/or System Supported

  • Support directory services for 160,000+ JHED accounts and thousands of devices, with daily synchronization between on-prem AD and Entra ID (formerly Azure AD).
  • Develop software that supports identity and access management solutions for the entire Johns Hopkins University and hospital system, including critical services in Office 365 and Azure cloud environments.


On-call Requirements

  • Yes


Special Knowledge, Skills & Abilities

  • Proficient in PowerShell and other scripting languages used for automating administrative tasks in AD and Azure environments.
  • Ability to write clean, maintainable, and well-documented code.
  • Strong problem-solving skills, with the ability to troubleshoot and resolve complex software issues.
  • Knowledge of identity management, authentication (SSO, MFA), and directory synchronization processes.
  • Ability to work independently and collaborate with cross-functional teams on large-scale projects.


Technical Qualifications or Specialized Certifications

  • Microsoft Certified: Azure Administrator (preferred).
  • Microsoft Certified: Azure Developer Associate.
  • Microsoft Certified: Azure Fundamentals.
  • Expertise in PowerShell scripting for task automation.
  • Experience with cloud services and APIs for integration with identity management solutions.


Minimum Qualifications
  • Bachelor's Degree.
  • Five years related experience.
  • Experience in software engineering, or a related field.
  • Three plus years of software development experience with PowerShell, Python, or similar scripting languages.
  • Strong understanding of Active Directory, Azure AD, and identity management principles.
  • Experience developing automation and integration solutions in large-scale enterprise environments.
  • Additional education may substitute for required experience and additional related experience may substitute for required education, to the extent permitted by the JHU equivalency formula.


Preferred Qualifications
  • Knowledge of APIs, especially related to cloud services (e.g., Entra ID (formerly Azure AD), Graph API, Office 365 API).
  • Experience with Office 365 administration and automation.
  • Experience with DevOps practices.
  • Familiarity with cloud platforms such as Azure and AWS, particularly for identity management and directory services.

 

 

Classified Title: Software Engineer 
Role/Level/Range: ATP/04/PE  
Starting Salary Range: $73,300 - $128,300 Annually (Commensurate with experience) 
Employee group: Full Time 
Schedule: Mon-Fri 8:30am-5pm 
Exempt Status: Exempt 
Location: Hybrid/Mount Washington Campus 
Department name: ​​​​​​​IT@JH Enterprise Directory and Messaging  
Personnel area: University Administration 

 

 

Total Rewards
The referenced base salary range represents the low and high end of Johns Hopkins University’s salary range for this position. Not all candidates will be eligible for the upper end of the salary range. Exact salary will ultimately depend on multiple factors, which may include the successful candidate's geographic location, skills, work experience, market conditions, education/training and other qualifications. Johns Hopkins offers a total rewards package that supports our employees' health, life, career and retirement. More information can be found here: https://hr.jhu.edu/benefits-worklife/.

Education and Experience Equivalency
Please refer to the job description above to see which forms of equivalency are permitted for this position. If permitted, equivalencies will follow these guidelines: JHU Equivalency Formula: 30 undergraduate degree credits (semester hours) or 18 graduate degree credits may substitute for one year of experience. Additional related experience may substitute for required education on the same basis. For jobs where equivalency is permitted, up to two years of non-related college course work may be applied towards the total minimum education/experience required for the respective job.

Applicants Completing Studies
Applicants who do not meet the posted requirements but are completing their final academic semester/quarter will be considered eligible for employment and may be asked to provide additional information confirming their academic completion date.

Background Checks
The successful candidate(s) for this position will be subject to a pre-employment background check. Johns Hopkins is committed to hiring individuals with a justice-involved background, consistent with applicable policies and current practice. A prior criminal history does not automatically preclude candidates from employment at Johns Hopkins University. In accordance with applicable law, the university will review, on an individual basis, the date of a candidate's conviction, the nature of the conviction and how the conviction relates to an essential job-related qualification or function.

Diversity and Inclusion
The Johns Hopkins University values diversity, equity and inclusion and advances these through our key strategic framework, the JHU Roadmap on Diversity and Inclusion.

Equal Opportunity Employer
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

EEO is the Law
https://www.eeoc.gov/sites/default/files/2023-06/22-088_EEOC_KnowYourRights6.12ScreenRdr.pdf

Accommodation Information
If you are interested in applying for employment with The Johns Hopkins University and require special assistance or accommodation during any part of the pre-employment process, please contact the Talent Acquisition Office at jhurecruitment@jhu.edu. For TTY users, call via Maryland Relay or dial 711. For more information about workplace accommodations or accessibility at Johns Hopkins University, please visit https://accessibility.jhu.edu/.

Vaccine Requirements
Johns Hopkins University strongly encourages, but no longer requires, at least one dose of the COVID-19 vaccine. The COVID-19 vaccine does not apply to positions located in the State of Florida. We still require all faculty, staff, and students to receive the seasonal flu vaccine. Exceptions to the COVID and flu vaccine requirements may be provided to individuals for religious beliefs or medical reasons. Requests for an exception must be submitted to the JHU vaccination registry. This change does not apply to the School of Medicine (SOM). SOM hires must be fully vaccinated with an FDA COVID-19 vaccination and provide proof of vaccination status. For additional information, applicants for SOM positions should visit https://www.hopkinsmedicine.org/coronavirus/covid-19-vaccine/ and all other JHU applicants should visit https://covidinfo.jhu.edu/health-safety/covid-vaccination-information/.

The following additional provisions may apply, depending upon campus. Your recruiter will advise accordingly.
The pre-employment physical for positions in clinical areas, laboratories, working with research subjects, or involving community contact requires documentation of immune status against Rubella (German measles), Rubeola (Measles), Mumps, Varicella (chickenpox), Hepatitis B and documentation of having received the Tdap (Tetanus, diphtheria, pertussis) vaccination. This may include documentation of having two (2) MMR vaccines; two (2) Varicella vaccines; or antibody status to these diseases from laboratory testing. Blood tests for immunities to these diseases are ordinarily included in the pre-employment physical exam except for those employees who provide results of blood tests or immunization documentation from their own health care providers. Any vaccinations required for these diseases will be given at no cost in our Occupational Health office.
Hybrid: On-site 3-4 days a week

Apply now »