Back to jobs

Senior Systems Engineer- Microsoft M365/Active Directory

Chicago, IL

Company Overview

Interactive Brokers Group, Inc. (Nasdaq: IBKR) is a global financial services company headquartered in Greenwich, CT, USA, with offices in over 15 countries. We have been at the forefront of financial innovation for over four decades, known for our cutting-edge technology and client commitment.

IBKR affiliates provide global electronic brokerage services around the clock on stocks, options, futures, currencies, bonds, and funds to clients in over 200 countries and territories. We serve individual investors and institutions, including financial advisors, hedge funds and introducing brokers. Our advanced technology, competitive pricing, and global market help our clients to make the most of their investments.

Barron's has recognized Interactive Brokers as the #1 online broker for six consecutive years. Join our dynamic, multi-national team and be a part of a company that simplifies and enhances financial opportunities using state-of-the-art technology.

About INTERACTIVE BROKERS!

This is a hybrid role (three days in the office/two days remote).

 

Interactive Brokers Group has been consistently at the forefront of trading innovation, starting with the invention of the first floor-based handheld computer in 1983. We pride ourselves on being primarily a technology company and challenging the status quo. We push boundaries to offer our clients the best trading platform with the most sophisticated features at the lowest cost. Software development is the lifeblood of our firm, and it shows in our stellar brokerage platform. Interactive Brokers is regularly recognized as a leader in the financial services industry.

 

About the role -

Senior Systems Engineer – Azure Cloud/Microsoft M365/Active Directory  

This role within the Global Windows Platform & Services team is responsible for planning, designing, automating, orchestrating, and implementing the entire stack of Microsoft solutions in our data centres and in the Microsoft Cloud. You will need to have expert knowledge of Microsoft Windows Operating and Office Suite, Microsoft Azure Cloud and Cloud Virtual Desktops, M365 and other 3rd party cloud technologies.

 Daily Duties Include:

  • Architect and design solutions to meet functional and non-functional requirements
  • Enforce adherence to architectural standards/principles, global product-specific guidelines, usability design standards, etc.
  • Proactively guide engineering methodologies, standards, and leading practices
  • Guidance of engineering staff and reviews of as-built configurations during the construction phase
  • Demonstrates strong analytical and technical problem-solving skills
  • Ability to analyze and operate at various levels of abstraction
  • Ability to balance what is strategically right with what is practically realistic
  • Excellent technical skills, enabling the creation of future-proof, complex global solutions
  • Excellent interpersonal communication and organizational skills are required to operate as a leading member of international, distributed teams that deliver quality services and solutions.
  • Ability to rapidly gain knowledge of the firm's organizational structure to facilitate work with groups outside of the immediate technical team.
  • Create logical and physical design for all Microsoft M365 solutions (SharePoint, Teams, OneDrive, Exchange Online, End Point Manager, ATP and any new business-related requirements).
  • Troubleshooting skills with Active Directory Infrastructure, Entra, Group Policies, AD/Infoblox DNS, Microsoft PowerShell, Windows Server 2012, 2016 and 2019 and Windows 10/11
  • Gather and document business requirements, assess technical capabilities and analyse findings to translate into technology solutions.
  • Perform in-depth technical research and analyse results to recommend suitable approaches for solving complex and challenging technical and integration problems.
  • Follow policies and procedures for change, problem, and incident management.
  • Plan, design, implement, and configure Active Directory and Group Policy in our domain environment.
  • Share the leading industry best practices with other Windows team members.
  • Proactively participate in L3 problem escalations and resolve desktop and server support issues.
  • Participate in the 24x7 on-call rotation and planned maintenance activities after hours and on weekends when needed.
  • Create High-level and Low-level Architecture for Microsoft Active Directory and Microsoft Azure Active Directory.

Key Technical Skills & Competencies:

  • 8-15 years of hands-on IT Engineering experience
  • Minimum of 3+ years in a cloud engineering role using service and hosting solutions such as private/public cloud IaaS, PaaS, and SaaS platforms.
  • 5+ year in-depth Microsoft M365 Experience. Knowledge in Entra and Compliance/Security Portal a must
  • 5+ years of experience in similar role (Active Directory Design, Azure Cloud and M365 break/fix, engineering, complex implementations)
  • Minimum 10 years of experience in a global financial organization (e.g., Brokerage, Trading, or Investment Management)
  • Experience in architecting and designing technical solutions leveraging Microsoft Azure IaaS, PaaS, and SaaS capabilities.
  • Expert-level experience with Active Directory federation services (SAML, Single Sign-On (SSO), Two-Factor authentication, RBAC and other related Identity and Access Management (IAM) technologies.
  • Knowledge of cloud security controls, including conditional access policies, tenant isolation, encryption at rest, encryption in transit, key management,
  • Extensive, real-world experience designing technology components for enterprise solutions with a focus on cloud technologies
  • Experience with configuration management and automation tools such as Ansible, Puppet, Terraforms, etc is a must
  • Experience with relational, graph and/or unstructured data technologies such as SQL Server, Azure SQL, Azure Data Lake, HD Insights, Hadoop, Cloudera, MongoDB, MySQL, Neo4j, Cassandra, Couchbase
  • Knowledge of programming and scripting languages such as JavaScript, PowerShell, Bash, SQL, .NET, Java, Python, PHP, Ruby, PERL, C++, etc.
  • Experience in distilling complex technical challenges to actionable decisions for stakeholders and guiding project teams by building consensus and mediating compromises when necessary.
  • Experience coordinating the intersection of complex system dependencies and interactions
  • Experience in solution delivery using Agile methodologies.
  • Demonstrated knowledge of relevant industry trends and standards
  • Knowledge and experience in IT methodologies and life cycles that will be used.
  • Exposure to infrastructure and application security technologies and approaches
  • Familiarity with requirements gathering techniques.
  • Certification Requirements (at least one Microsoft Azure Cloud Architect, AWS Workspaces, etc.). Microsoft Certifications (MCSE and MOUS) are a strong plus and some will be required within a year of joining IB.
  • In-depth experience with M365 Security and Compliance products, including eDiscovery, DLP and ATP
  • In-depth experience with Microsoft Teams implementations and deployment
  • Excellent verbal and written communication skills. Strong customer service and professional client facing skills.
  • Excellent attention to detail and proven strong analytical / troubleshooting and multi-tasking skills.
  • Strong time management and organizational skills and ability to meet project deadlines.
  • Ability to learn new technologies and adopt new tools and techniques to increase automation, performance and scalability.
  • Ability to work autonomously and as part of the IB global Windows team.
  • Understanding of networking concepts, LAN/WAN, DNS/DHCP, routing, switching and firewalls. Working knowledge of Infloblox is an added plus
  • Expert experience in Windows Server 2008/2012/2016, Microsoft SQL & Windows clustering technologies, Active Directory, Group Policy and DFS file systems.
  • Knowledge of cloud services such as Microsoft Azure, AWS (IaaS, SaaS, and PaaS) and other relevant cloud technologies.
  • Hands-on expertise working with a complex Active Directory infrastructure environment and the requirement of following strict standards, procedures and processes.

 

Company Benefits & Perks

  • Competitive salary, annual performance-based bonus and stock grant
  • Retirement plan 401(k) with a competitive company match
  • Excellent health and welfare benefits, including medical, dental, and vision benefits
  • Wellness screenings and assessments, health coaches and counseling services through an Employee Assistance Program (EAP)
  • Paid time off and a generous parental leave policy
  • Daily company lunch allowance provided, and a fully stocked kitchen with healthy options for breakfast and snack
  • Corporate events, including team outings, dinners, volunteer activities and company sports teams
  • Education reimbursement and learning opportunities
  • Modern offices with multi-monitor setups

 

Apply for this job

*

indicates a required field

Resume/CV*

Accepted file types: pdf, doc, docx, txt, rtf

Cover Letter

Accepted file types: pdf, doc, docx, txt, rtf


Education

Select...
Select...

Privacy Disclosure *

Interactive Brokers (“IBKR”) is committed to protecting the privacy of its users. 1. Aggregate Information about Visitors. We collect information on a general and aggregate basis, such as IP addresses, in order to analyze the performance of our sites. This data is used completely anonymously in order to determine the number of people who visit our sites and the most frequently used sections of our sites. This enables us to continually update and refine our sites to ensure it provides you with a successful experience. 2. Information about Users. When registering you are requested to enter certain information about yourself. This information forms the basis for any job application. 3. Your online resume and job application. The details of your job application, covering letter, resume and academic results and any other information will not be viewed by anyone except IBKR and any third party service providers used by IBKR for its hiring processes. 4. Information Management. You can edit any information entered at any time before your job application is submitted. This includes contact details, email address, job application information and password. However, once a job application has been sent, that specific job application cannot be altered. You have certain rights to see and correct data held about you. Please refer to the IBKR Group Privacy Policy on our website. 5. Security. The security of our system is very important to us and we work hard on it. However, please note that no data transmission over the Internet is 100% secure.

Select...
Select...
Select...
Select...
Select...

For fresh graduates please mention 'NA'. 

Select...

Voluntary Self-Identification

For government reporting purposes, we ask candidates to respond to the below self-identification survey. Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

As set forth in Interactive Brokers’s Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law.

Select...
Select...
Race & Ethnicity Definitions

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.

Select...

Voluntary Self-Identification of Disability

Form CC-305
Page 1 of 1
OMB Control Number 1250-0005
Expires 04/30/2026

Why are you being asked to complete this form?

We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years.

Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability. Disabilities include, but are not limited to:

  • Alcohol or other substance use disorder (not currently using drugs illegally)
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDS
  • Blind or low vision
  • Cancer (past or present)
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or serious difficulty hearing
  • Diabetes
  • Disfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disorders
  • Epilepsy or other seizure disorder
  • Gastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndrome
  • Intellectual or developmental disability
  • Mental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSD
  • Missing limbs or partially missing limbs
  • Mobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supports
  • Nervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS)
  • Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilities
  • Partial or complete paralysis (any cause)
  • Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysema
  • Short stature (dwarfism)
  • Traumatic brain injury
Select...

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.