Sr Active Directory Engineer
Job highlights
Identified by Google from the original job post
Qualifications
Minimum of 5 years of related work experience
Experience designing, implementing, and integrating enterprise-level
Experience with highly connected hybrid LDAP solutions with at least 40,000 users, including:
Active Directory
Azure Active Directory
Microsoft Identity Manager
Active Directory Federation
Integrations between key services and various LDAP providers
Experience in engineering, designing, and integrating both infrastructure components
(domain controllers, sites and services, connectivity, etc.) and logical aspects (GPO
management, directory structure, and management toolsets)
Experience in project management of large IT initiatives
Experience working with and directing suppliers in an outsourced environment
infrastructure
Benefits
Hybrid, 4 days on-site per week
Responsibilities
Lead the assessment and analysis of the Domain controllers in the AD forest
Document and guide the operations team with the decommissioning, upgrade and migration of domain controllers
Analyze the existing use of PKI certificates in legacy directories and help migrate them into Microsoft's PKI service
Evaluate capabilities of services/products and design solutions to deliver future service
offerings through detailed technical analysis
Define engineered designs, including full documentation
Follow structured methodologies for technical analysis of products and solutions
Assess existing domain controllers, identify consolidation opportunities, and develop a migration strategy
Perform domain controller upgrades, decommissioning etc
Ensure replication integrity and domain health during consolidation
PKI Certificate Migration & Cleanup:
Analyze existing PKI infrastructure and certificates
Migrate certificates to a modern PKI infrastructure with minimal disruption
Revoke, renew, and replace legacy or non-compliant certificates
Ensure compliance with security policies and best practices
Active Directory Administration & Cleanup:
Identify and remove stale objects, orphaned accounts, and unused policies
Optimize AD replication, site topology, and group policy objects (GPOs)
Implement best practices for AD security, auditing, and hardening
Diagnose and resolve AD, DNS, and PKI-related issues
Work with security and infrastructure teams to remediate vulnerabilities
Document configurations, policies, and procedures for future reference
Job description
On-site 4 days a week!
Senior Active Directory Engineer with a major corporation in Seattle, WA. Hybrid, 4 days on-site per week.
Duration: 6 month(s), can be extended
Required Qualifications & Skills:
• Minimum of 5 years of related work experience
• Experience designing, implementing, and integrating enterprise-level
• Experience with highly connected hybrid LDAP solutions with at least 40,000 users, including:
• Active Directory
• Azure Active Directory
• Microsoft Identity Manager
• Active Directory Federation
• Services / AADC
• Integrations between key services and various LDAP providers.
• Experience in engineering, designing, and integrating both infrastructure components
• (domain controllers, sites and services, connectivity, etc.) and logical aspects (GPO
• management, directory structure, and management toolsets)
• Experience in project management of large IT initiatives
• Experience working with and directing suppliers in an outsourced environment
• infrastructure
Job Description:
• Lead the assessment and analysis of the Domain controllers in the AD forest.
• Document and guide the operations team with the decommissioning, upgrade and migration of domain controllers.
• Analyze the existing use of PKI certificates in legacy directories and help migrate them into Microsoft's PKI service.
• Evaluate capabilities of services/products and design solutions to deliver future service
• offerings through detailed technical analysis.
• Define engineered designs, including full documentation
• Follow structured methodologies for technical analysis of products and solutions
Project Work:
Domain Controller Consolidation:
• Assess existing domain controllers, identify consolidation opportunities, and develop a migration strategy.
• Perform domain controller upgrades, decommissioning etc.
• Ensure replication integrity and domain health during consolidation.
PKI Certificate Migration & Cleanup:
• Analyze existing PKI infrastructure and certificates.
• Migrate certificates to a modern PKI infrastructure with minimal disruption.
• Revoke, renew, and replace legacy or non-compliant certificates.
• Ensure compliance with security policies and best practices.
Active Directory Administration & Cleanup:
• Identify and remove stale objects, orphaned accounts, and unused policies.
• Optimize AD replication, site topology, and group policy objects (GPOs).
• Implement best practices for AD security, auditing, and hardening.
Troubleshooting & Support:
• Diagnose and resolve AD, DNS, and PKI-related issues.
• Work with security and infrastructure teams to remediate vulnerabilities.
• Document configurations, policies, and procedures for future reference.
Required Education:
BA/BS Mandatory