Muntinlupa, Philippines (Hybrid)
We are looking for a highly skilled Active Directory Administrator / Lead to manage, secure, and optimize our hybrid identity infrastructure. This role is central to ensuring seamless authentication, governance, and compliance across global environments. The ideal candidate has strong technical leadership in both on-premises Active Directory and Azure AD, backed by scripting and security expertise.
Active Directory (On-Prem):
Forest, domain, and OU design and maintenance
Trust relationships, replication strategies, FSMO roles
Group Policy creation, management, and troubleshooting (GPMC, gpresult)
Azure Active Directory & Hybrid Identity:
Azure AD Connect, ADFS, SSO, PTA, PHS
Hybrid join management and Azure identity lifecycle
Azure B2B/B2C integration and external identity control
Security & Hardening:
Tiered administration, securing domain controllers
MFA, Conditional Access Policies, RBAC
Monitoring with Microsoft Defender, Semperis, SIEM tools
PowerShell & Automation:
Scripting for bulk user management, cleanup, reporting
Graph API and Azure Automation workflows
Task Scheduler, backup scripting, alerting integrations
Backup & Disaster Recovery:
Authoritative/non-authoritative restore using Veeam, Windows Server Backup, Semperis ADFR
Audit log tracking, replication troubleshooting
Compliance & Governance:
Alignment with ISO 27001, GDPR, NIST
Access review and identity-based risk mitigation
Identity & Access Management (IAM) with PIM, CAPs, and RBAC
Windows Server (2012โ2022): AD DS, DNS, DHCP, file systems
Admin tools: ADUC, RSAT, ADSI Edit, Windows Admin Center
Familiarity with Microsoft Intune, Endpoint Manager, and Hello for Business
Knowledge of virtualization: VMWare, Hyper-V
Exposure to network integration: Palo Alto, Cisco switches
5โ7 years in Identity & Access Management
3+ years as a Tech Ops Lead for AD/Azure AD operations
Excellent verbal/written communication in English
Self-starter, team collaborator, analytical mindset
Comfortable in high-level escalations and L3 technical troubleshooting
Willing to travel when required
SC-300: Identity and Access Administrator Associate
SC-900: Security, Compliance, and Identity Fundamentals
AZ-305: Azure Solutions Architect Expert (preferred)
Active Directory / Azure AD, ADFS, PIM, Defender for Identity
PowerShell, Graph API, Windows Admin Center
VMWare, Nutanix, Windows Server 2012โ2022
Semperis, Veeam, Microsoft 365, CA Service Desk