1. All jobs
  2. Operations (Ops)
  3. DevOps

Active Directory Administrator – SME for Enterprise Directory Services

Cornerstone

Position Overview:

We are seeking an experienced Active Directory Administrator to join our team and serve as the Subject Matter Expert (SME) for Active Directory and associated services. This role involves managing and building complex and highly available enterprise infrastructure, using infrastructure as code (IaC) practices, as well as handling multi-cloud, and multi-region environments. The ideal candidate will possess deep expertise in Active Directory, DNS, Identity and Access Management (IAM) solutions, with a proven track record of building and managing scalable Active Directory Domain Services in the cloud, using a software development lifecycle to manage AD through code.

 

Key Responsibilities:

  1. Active Directory Design, Implementation, and Maintenance:
    • Design, implement, and maintain enterprise Active Directory (AD) infrastructure, including domain controllers, forests, trusts, and group policies.
    • Manage and build solutions for Active Directory Domain Services (AD DS) hosted within cloud providers such as AWS, GCP, and Azure.
    • Ensure optimal performance and reliability of directory-related services such as DNS, DHCP, and gMSA (Group Managed Service Accounts).
  2. Infrastructure as Code (IaC):
    • Develop and manage directory service infrastructure using code, employing tools like DSC, PowerShell, and CloudFormation.
    • Managment and deployment of GPOs through code and automation.
    • Automated deployment, configuration, and management of AD environments across global cloud regions, reducing manual effort and error.
  3. Identity and Access Management (IAM):
    • Oversee and improve IAM policies, procedures, and tools to ensure secure access across the organization.
    • Integrate and manage Single Sign-On (SSO) solutions, including OKTA and federated login systems for cloud platforms (AWS, GCP, Azure).
    • Implement and troubleshoot multi-factor authentication (MFA) across environments.
  4. Multi-Cloud and Multi-Region Environments:
    • Support and enhance Active Directory services across multi-cloud and multi-region deployments.
    • Configure and maintain cross-platform trust relationships and hybrid directory synchronization.
  5. Advanced Troubleshooting and Support:
    • Provide Tier-3 support for complex AD and directory-related incidents and escalations.
    • Perform root cause analysis and implement preventative measures to reduce service disruptions.
  6. Security and Compliance:
    • Collaborate with security teams to ensure directory services meet regulatory and compliance requirements.
    • Conduct regular audits and implement security best practices for directory services and IAM.
  7. Development and Innovation:
    • Build and innovate directory service solutions that scale with enterprise needs, leveraging code-driven methodologies.
    • Evaluate and implement new technologies and tools to enhance directory service capabilities.
  8. Documentation and Training:
    • Develop and maintain comprehensive documentation for AD architecture, processes, and configurations.
    • Provide training and knowledge transfer to junior team members and cross-functional teams.

Qualifications:

  • Educational Background: Bachelor’s degree in Computer Science, Information Technology, or a related field (or equivalent experience).
  • Professional Experience:
    • 3+ years as an Active Directory Administrator in enterprise environments.
    • Strong expertise in Active Directory Domain Services (AD DS) on AWS Cloud, including deployment, management, and optimization.
    • Proficiency in DNS, DHCP, gMSA, and IAM.
    • Proven experience integrating directory services across AWS, GCP, Azure, and hybrid environments.
    • Hands-on experience managing directory services through IaC tools such as DSC, PowerShell, and CloudFormation.
  • Additional Skills:
    • Proficient in scripting with Groovy, Python, or similar tools.
    • Hands-on experience with OKTA for SSO, MFA, and federated login configurations.
    • Knowledge of compliance standards such as SOC2, ISO27001, and FedRAMP.

Preferred Skills:

  • Familiarity with Azure AD Connect and hybrid identity solutions.
  • Experience supporting large-scale directory services in multi-cloud environments.
  • Exposure to containerized environments and Kubernetes authentication integration.
  • Certifications such as Microsoft Certified: Identity and Access Administrator Associate, AWS Certified Solutions Architect, or equivalent.

Soft Skills:

  • Strong analytical and problem-solving skills, with attention to detail.
  • Excellent communication and collaboration skills to work with cross-functional teams.
  • Ability to prioritize and manage multiple tasks in a dynamic environment.

Why Join Us?

  • Opportunity to lead and innovate in a modern directory service environment.
  • Work with cutting-edge technologies across multi-cloud and multi-region platforms.
  • Collaborate with a talented team driving large-scale digital transformations.
  • Be part of a culture that values automation, security, and continuous improvement.

 

Employment Type: Full-Time

Published 21 May
68 views
·
15 applications
67% read
·
27% responded
Last responded 1 week ago
To apply for this and other jobs on Djinni login or signup.
📊 $2500-4000 Average salary range of similar jobs in analytics →
Loading...
We use cookies to improve your experience.
Learn more