Identity / AD Infrastructure Engineer

About Virtido

Virtido is an entrepreneurial and innovative IT company headquartered in Zurich, Switzerland. We realize ideas and projects - from strategic concept to technical implementation closely alongside our dynamic clients with a strong focus on start-up or fast-growing companies. Since inception in 2015, we have grown rapidly to currently 140+ professionals in Switzerland, Poland, Ukraine and the Philippines.

About the client

Our Client is a Swiss-based global Private equity firm. The firm manages a broad range of funds, structured products and customised portfolios for an international clientele of institutional investors, private banks, individual investors and other financial institutions.

About this role

As a Senior IT Infrastructure Engineer, you will focus on ensuring that our Client's core IT infrastructure is robust, secure, and scalable, with a particular emphasis on managing and optimizing Entra ID, Active Directory, DNS, PKI, and Exchange Online.

This is a full-time position with a hybrid work setup, requiring 3 days onsite per week in Bonifacio Global City (BGC), Manila.

Responsibilities

• Design, deploy and maintain Active Directory infrastructure, including Domain Controllers, Group Policies and Entra ID interfacing services, as well as its overall security hardening
• Design and maintain messaging platforms based on Exchange Online and AWS SES
• Design, deploy and maintain internal and external DNS infrastructure, based on Active Directory and Route 53 and its overall security hardening
• Design, deploy and maintain Enterprise PKI and its overall security hardening
• Design, deploy and maintain Entra ID and its overall IdP features
• Design, management and hardening of Windows Server product
• Develop and maintain scripts and automation tools to streamline infrastructure management and deployment processes, mainly based on PowerShell, Graph-API and Service-Now
• Identify opportunities for automation to improve efficiency and reduce manual intervention
• Implement automated monitoring solutions to proactively identify and resolve issues
• Provide second and third level support for infrastructure-related incidents and service requests.
• Work closely and collaborate with other IT and cross-functional teams, including network, security and application teams, to ensure seamless integration and operation of infrastructure components

Requirements

• 7+ years of experience in IT infrastructure / identity engineering, preferably in enterprise or regulated environments
• Strong hands-on experience with Active Directory (AD DS), Group Policy, and Windows Server environments
• Deep knowledge of Microsoft Entra ID (Azure AD), including hybrid identity, SSO (SAML/OAuth/OIDC), and identity lifecycle management
• Experience with Microsoft 365 / Exchange Online
• Solid expertise in security hardening across AD, Entra ID, DNS, and Windows environments
• Hands-on experience with Enterprise PKI / Certificate Services (AD CS)
• Strong understanding of DNS infrastructure (AD-integrated DNS and cloud DNS such as Route 53)
• Working knowledge of Azure and AWS (especially Route 53, SES)
• Strong scripting skills in PowerShell and experience with Microsoft Graph API
• Experience with automation and ITSM tools (e.g., ServiceNow)
• Solid understanding of networking fundamentals and ITIL / ITSM processes
• Experience providing L2/L3 support in complex environments
• Strong problem-solving, communication, and stakeholder management skills
• Strong level of English language (B2+) as you will be working in an English-speaking environment.