At Franklin Templeton, we're driving our industry forward by developing new and innovative ways to help our clients achieve their investment goals. Our dynamic and diversified firm spans asset management, wealth management, and fintech, offering many ways to help investors make progress toward their goals. Our talented teams working around the globe bring expertise that's both broad and unique. From our welcoming, inclusive, and flexible culture to our global and diverse business, we offer opportunities not only to help you reach your potential but also to contribute to our clients' achievements. Come join us in delivering better outcomes for our clients around the world! * At Franklin Templeton, everything we do is focused on one thing - delivering better client outcomes. We do that by partnering closely with our clients, assessing their strategic needs, and identifying the solution or solutions that can meet the challenge. Over 9,500 employees working in 34 countries around the world are dedicated to servicing investment solutions for our clients in more than 160 countries. For more than 70 years our success has been a direct result of the talent, skills and persistence of our people, and we are looking for qualified candidates to join our team #MID_SENIOR_LEVEL What is a Senior Engineer-Active Directory responsible for? * We seek a Senior Engineer to lead the design, implementation, and support of Microsoft Active Directory (AD), AD backup and recovery, Entra (Azure AD), DNS, and Azure application registration services. The candidate will ensure secure, scalable identity and access management (IAM) and network services, collaborating with cross-functional teams to enhance efficiency and security. * Infrastructure Engineers analyze, design, install, configure, and modify IT infrastructure solutions. They plan capacity improvements, work on complex problems requiring evaluation of multiple factors, and exercise independent judgment within defined policies. They lead or provide expertise to project teams, participate in process improvements, and collaborate with other engineers, operations, development staff, and vendors. They also develop and maintain documentation for infrastructure planning, operational use, and support. What are the ongoing responsibilities of Senior Engineer-Infrastructure? * As part of the Platform engineering team, we are looking for a highly skilled and experienced Senior Engineer to lead the design, implementation, and maintenance of enterprise-level Microsoft Active Directory, Microsoft Entra (Azure AD), and DNS solutions. The ideal candidate will have extensive expertise in managing identity, access in complex IT environments. This role involves collaborating with cross-functional teams to ensure secure, scalable, and highly available directory and DNS services, driving innovation, and adhering to industry best practices. * The Infrastructure Engineer provides broad technical expertise and solutions focused on delivering high-quality services. Our services scale globally, are highly available, and resilient with a focus on business continuity. The role works closely with application development, DevOps, and CloudOps to design, engineer, and operate systems while establishing guidelines that align infrastructure with enterprise architecture standards and advance towards a self-serviceable environment. Collaboration with application development groups to understand their information and data needs is essential, along with partnering with DevOps, Architecture, Application Development, Testing, and Operations, as well as Cloud Architecture and Engineering teams, to enable solutions while promoting reliability engineering principles through self-service and automation. Key Responsibilities: * Strong ownership, and collaboration demonstrated through communication * Experience in designing, managing, and scaling systems in public, private, or hybrid cloud environment * Ability to design, author, and release code, provide coding guidance/review and create documentation * Acute drive to automate manual operations and to improve through iteration * Architect, deploy, and maintain Microsoft Active Directory environments, including multi-domain and multi-forest configurations. * Manage and troubleshoot Active Directory replication, OU structures, trusts, schema extensions, and Group Policies. * Perform upgrades, patch management, and health checks for AD infrastructure. * Implement and maintain AD replication and disaster recovery strategies. Perform routine AD backup validation and testing for disaster scenarios. * Ensure swift recovery and business continuity in case of AD failures or data corruption. * Design and manage hybrid identity environments, integrating on-premises AD with Azure AD. * Configure and manage identity services, including Conditional Access, Single Sign-On (SSO), and Multi-Factor Authentication (MFA). * Ensure seamless integration of Microsoft Entra ID with SaaS, IaaS, and PaaS services. * Develop policies for identity lifecycle management and role-based access control (RBAC). * Manage and configure Azure AD application registrations and enterprise applications. * Define API permissions, certificates, and secrets for app integrations. * Troubleshoot application registration issues and optimize integration processes. * Administer and troubleshoot enterprise DNS environments, including internal and external DNS configurations. * Optimize DNS zones, records, and replication strategies to ensure high availability and performance. * Design and implement backup and disaster recovery strategies for Active Directory. * Perform root cause analysis and remediation of AD and DNS-related issues. * Excellent troubleshooting and problem-solving skills with desire to fix things, lead by example * Experience with scale testing, disaster recovery, and capacity planning What ideal qualifications, skills & experience would help someone to be successful? * Bachelor's and/or master's degree in computer science, Computer Engineering, or related technical discipline * Minimum 10 years of experience in IT, with at least 5 years specializing in Active Directory and DNS. * Deep knowledge of Microsoft Active Directory, including, replication, authentication protocols (Kerberos, LDAP and NTLM), and trust relationships. * Experience in securing and optimizing large-scale directory environments. * Hands-on experience with Microsoft Entra (Azure AD) and hybrid identity solutions. * Expertise in DNS administration and troubleshooting, including BIND and Microsoft DNS. * Hands-on experience with Azure AD application registrations, OAuth, OpenID Connect, and API integrations. * Proficiency in scripting languages (e.g., PowerShell) for automation and configuration management. * Familiarity with related technologies such as DHCP, PKI, and NTP. * Excellent written and verbal communication skills with users, management, technical and non-technical teams * Demonstrated experience and expertise influencing to business decision-makers by reinforcing the value of solutions * Ability to quickly learn new and existing technologies with strong problem-solving skills Work Shift Timings - 2:00 PM - 11:00 PM IST Experience our welcoming culture and reach your professional and personal potential! Our culture is shaped by our diverse global workforce and strongly held core values. Regardless of your interests, lifestyle, or background, there's a place for you at Franklin Templeton. We provide employees with the tools, resources, and learning opportunities to help them excel in their career and personal life. Hear more from our employees By joining us, you will become part of a culture that focuses on employee well-being and provides multidimensional support for a positive and healthy lifestyle. We understand that benefits are at the core of employee well-being and may vary depending on individual needs. Whether you need support for maintaining your physical and mental health, saving for life's adventures, taking care of your family members, or making a positive impact in your community, we aim to have them covered. Highlights of our benefits include: * Professional development growth opportunities through in-house classes and over 150 Web-based training courses * An educational assistance program to financially help employees seeking continuing education * Medical, Life and Personal Accident Insurance benefit for employees. Medical insurance also cover employee's dependents (spouses, children and dependent parents) * Life insurance for protection of employees' families * Personal accident insurance for protection of employees and their families * Personal loan assistance * Employee Stock Investment Plan (ESIP) * 12 weeks Paternity leave * Onsite fitness center, recreation center, and cafeteria * Transport facility * Child day care facility for women employees * Cricket grounds and gymnasium * Library * Health Center with doctor availability * HDFC ATM on the campus Learn more about the wide range of benefits we offer at Franklin Templeton Franklin Templeton is an Equal Opportunity Employer. We are committed to providing equal employment opportunities to all applicants and existing employees, and we evaluate qualified applicants without regard to ancestry, age, color, disability, genetic information, gender, gender identity, or gender expression, marital status, medical condition, military or veteran status, national origin, race, religion, sex, sexual orientation, and any other basis protected by federal, state, or local law, ordinance, or regulation. Franklin Templeton is committed to fostering a diverse and inclusive environment. If you believe that you need an accommodation or adjustment to search for or apply for one of our positions, please send an email to [email protected]. In your email, please include the accommodation or adjustment you are requesting, the job title, and the job number you are applying for. It may take up to three business days to receive a response to your request. Please note that only accommodation requests will receive a response.