Active Directory Administrator

✅ Position Overview:

We are looking for a highly skilled Active Directory Administrator / Lead to manage, secure, and optimize our hybrid identity infrastructure. This role is central to ensuring seamless authentication, governance, and compliance across global environments. The ideal candidate has strong technical leadership in both on-premises Active Directory and Azure AD, backed by scripting and security expertise.

🛠️ Primary Technical Abilities:

• Active Directory (On-Prem):

  • Forest, domain, and OU design and maintenance

  • Trust relationships, replication strategies, FSMO roles

  • Group Policy creation, management, and troubleshooting (GPMC, gpresult)

• Azure Active Directory & Hybrid Identity:

  • Azure AD Connect, ADFS, SSO, PTA, PHS

  • Hybrid join management and Azure identity lifecycle

  • Azure B2B/B2C integration and external identity control

• Security & Hardening:

  • Tiered administration, securing domain controllers

  • MFA, Conditional Access Policies, RBAC

  • Monitoring with Microsoft Defender, Semperis, SIEM tools

• PowerShell & Automation:

  • Scripting for bulk user management, cleanup, reporting

  • Graph API and Azure Automation workflows

  • Task Scheduler, backup scripting, alerting integrations

• Backup & Disaster Recovery:

  • Authoritative/non-authoritative restore using Veeam, Windows Server Backup, Semperis ADFR

  • Audit log tracking, replication troubleshooting

• Compliance & Governance:

  • Alignment with ISO 27001, GDPR, NIST

  • Access review and identity-based risk mitigation

  • Identity & Access Management (IAM) with PIM, CAPs, and RBAC

💡 Secondary Technical Abilities:

• Windows Server (2012–2022): AD DS, DNS, DHCP, file systems

• Admin tools: ADUC, RSAT, ADSI Edit, Windows Admin Center

• Familiarity with Microsoft Intune, Endpoint Manager, and Hello for Business

• Knowledge of virtualization: VMWare, Hyper-V

• Exposure to network integration: Palo Alto, Cisco switches

🤝 Behavioral Abilities:

• 5–7 years in Identity & Access Management

• 3+ years as a Tech Ops Lead for AD/Azure AD operations

• Excellent verbal/written communication in English

• Self-starter, team collaborator, analytical mindset

• Comfortable in high-level escalations and L3 technical troubleshooting

• Willing to travel when required

🧪 Preferred Certifications:

• SC-300: Identity and Access Administrator Associate

• SC-900: Security, Compliance, and Identity Fundamentals

• AZ-305: Azure Solutions Architect Expert (preferred)

🖥️ Technical Environment:

• Active Directory / Azure AD, ADFS, PIM, Defender for Identity

• PowerShell, Graph API, Windows Admin Center

• VMWare, Nutanix, Windows Server 2012–2022

• Semperis, Veeam, Microsoft 365, CA Service Desk