Senior Active Directory Engineer

DescriptionSeeking a Senior Active Directory Engineer for the following role -Lead the assessment and analysis of the Domain controllers in the AD forest.Document and guide the operations team with the decommissioning, upgrade and migration of domain controllers.Analyze the existing use of PKI certificates in legacy directories and help migrate them into Microsoft's PKI service.Evaluate capabilities of services/products and design solutions to deliver future service offerings through detailed technical analysis.Define engineered designs, including full documentation.Follow structured methodologies for technical analysis of products and solutions.Domain Controller consolidation.Assess existing domain controllers, identify consolidation opportunities, and develop a migration strategy.Perform domain controller upgrades, decommissioning, etc.Ensure replication integrity and domain health during consolidation.PKI certificate migration and cleanup.Analyze existing PKI infrastructure and certificates.Migrate certificates to a modern PKI infrastructure with minimal disruption.Revoke, renew, and replace legacy or non-compliant certificates.Ensure compliance with security policies and best practices.Active Directory administration and cleanup.Identify and remove stale objects, orphaned accounts, and unused policies.Optimize AD replication, site topology, and group policy objects (GPOs)Implement best practices for AD security, auditing, and hardening.Troubleshooting and support.Diagnose and resolve AD, DNS, and PKI-related issues.Work with security and infrastructure teams to remediate vulnerabilities.Document configurations, policies, and procedures for future reference.Basic QualificationsMinimum of 5 years of related work experience.Demonstrated experience designing, implementing, and integrating enterprise-level - highly connected hybrid LDAP solutions with at least 40,000 users, *****Active DirectoryAzure Active DirectoryMicrosoft Identity ManagerActive Directory FederationServices / AADCIntegrations between key services and various LDAP providers.Experience in engineering, designing, and integrating both infrastructure components (domain controllers, sites and services, connectivity, etc.) and logical aspects (GPO management, directory structure, and management toolsets)Experience in project management of large IT initiatives.Experience working with and directing suppliers in an outsourced environment infrastructure.EducationBA/BS (required)The estimated pay range for this position is USD $90.00/hr - USD $98.50/hr. Exact compensation and offers of employment are dependent on job-related knowledge, skills, experience, licenses or certifications, and location. We also offer comprehensive benefits. The Talent Acquisition Partner can share more details about compensation or benefits for the role during the interview process.

Created: 2025-03-01