Active Directory Engineer

7 days ago


Washington, United States SAIC Full time

Description

The Active Directory Engineer provides support, implementation, and design services for Microsoft’s on-premises and cloud identity platforms to including but not limited to Microsoft Windows Active Directory (AD), Microsoft Azure Active Directory (AAD), Microsoft Active Directory Federation Services (ADFS) and Microsoft Azure Application Proxy (AZAP).  The Active Directory Architect is also a subject matter expert in using Active Directory Group Policy to implement security standards on Domain Controllers, Domain Member Servers and Domain Member Workstations.

This role requires an in-depth knowledge of the Active Directory, Domain controllers, Azure Cloud, and a proficiency in PowerShell scripting. The candidate must have demonstrated prior and active experience in managing multi-domain issues. The candidate will support the continuing goal of incorporating these innovative technologies into the Department of State (DOS) technical modernization program. The successful candidate will be a self-starter, someone who can work independently, and will be flexible in a fast-paced environment.

This role is hybrid, but work is primarily onsite at the customer's location.   Associate will support a rotational on-call posture after normal working hours in response to technical support requests.

Responsibilities:

  • Applies advanced subject matter knowledge to solve complex business issues and is regarded as a subject matter expert.
  • Frequently contributes to the development of new ideas and methods. Works on complex problems where analysis of situations or data requires an in-depth evaluation of multiple factors.
  • Acts as an expert providing direction and guidance to process improvements and establishing policies.
  • Participates as a member of and leads development teams. Performs analysis of complex functional and business requirements. Prepares code stubs for others. Completes code to implement solutions. Designs solutions for others to code. Participates in cross-functional teams. Leads design activities May provide mentoring and guidance to other developers. Designs, prepares, and executes Unit tests.
  • Demonstrates technical leadership and exerts influence outside of the immediate team. Develops innovative team solutions to complex problems. Contributes to strategic direction for teams.
  • Applies in-depth or broad technical knowledge to provide maintenance solutions across one or more technology areas
  • Independently implements end-user or enterprise infrastructure or services of significant complexity.
  • Integrates technical expertise and business understanding to create superior solutions for the company and customers. Mentors and consults with team members and other organizations, customers, and vendors on complex issues.
  • Exercises significant independent judgment within broadly defined policies and practices to determine the best method for accomplishing work and achieving objectives.
  • Develop comprehensive and accurate reports and presentations for both technical and executive audiences. 
  • Create and document detailed guides and tracking documents - for clients to leverage as part of Active Directory hardening and overall infrastructure enhancements.
  • Tier 3 level troubleshooting including diagnosing complex replication and multi domain issues.
  • Develop standards, target states, roadmaps, effectively communicating and obtaining consensus across architecture, engineering, and operations teams.

Qualifications

Required Education & Experience:

  • Bachelor’s degree with 9+ years of recent system engineering experience; Master's degree with 7+ years of experience;  Additional training and experience may be substituted in lieu of a degree.
  • Expert knowledge administering AD, AAD and ADFS in hybrid environments.
  • Experience with QUEST tools.
    • Change Auditor
    • Recovery Manager for Active Directory
    • Group Policy Admin
    • Active Roles Server
    • Quest Migration Manager
  • Expert knowledge administering AD and AAD support services such as AAD Conditional Access Policies, AAD Self-Service Password Reset (SSPR), AAD Connect and Windows Server DNS.
  • Expert knowledge designing, testing, deploying and maintaining Active Directory Group Policy (GPO) for the purpose of securing Domain Controllers, Domain Member Servers and Domain Member Workstations.
  • Expert analyzing security risks with proposed changed to AD, AAD, ADFS, AZAP, Domain Controllers, GPOs, etc. and providing an understandable summary of those risks to management for proper implementation decisions.
  • Experience administering multiple AD forests with forest trusts.
  • Knowledge of third-party AD support services such as Quest Active Roles, Quest Change Auditor for AD.
  • Knowledge of Microsoft Identity Manager.
  • Knowledge on configuring, deploying and onboarding applications for remote access via AZAP, including the use of Kerberos constrained delegation (KCD) for Single Sign On.
  • Must have a deep and thorough understanding of monitoring best practices,
  • Extensive experience with infrastructure and server theories, principles, and concepts; application infrastructure and standards; networking fundamentals.
  • Experience translating technical issues into understandable business language for end-users.
  • Experience working with cyber security teams to actively update AAD conditional access policy and AD Group Policies as determined by cyber threats and operational requirements.
  • Knowledge of Software as a Service (SaaS), Platform as a Service (PaaS) and Infrastructure as a Service (IaaS) – as it pertains to Enterprise Domain design and support.
  • Experience as a subject matter expert (SME) Senior Active Directory System Engineer or Architect in a large AD environment with the proven ability to coordinate technical efforts and resolve issues across multiple teams.
  • Strong working knowledge of Windows 2016 and 2019 Member Servers and Domain Controller operating systems platforms, DNS, networks, DMZs, network security zones.
  • PowerShell scripting experience and capabilities.
  • Expert knowledge of ADDS, ADFS, Azure AD and Windows Server Operating Systems 2016 & up.
  • Hands-on expertise with Azure AD Connect and  AD Cloud SaaS.

Required Clearance:

  • US Citizenship.
  • Ability to obtain Top Secret clearance.
  • Must be able to obtain an interim top secret clearance prior to starting work.   

Target salary range: $160,001 - $200,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.

SAIC accepts applications on an ongoing basis and there is no deadline.

Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.

  • Washington, United States ARFA Solutions, LLC Full time

    Job DescriptionJob DescriptionARFA Solutions, LLC is seeking a skilled Active Directory Engineer to join our team. As an Active Directory Engineer, you will be responsible for the design, implementation, and management of our Active Directory infrastructure. You will collaborate with cross-functional teams to ensure the reliability, security, and scalability...


  • Washington, United States Eliassen Group Full time

    The Senior Active Directory Engineer will play a critical role in a wide role of high-profile projects support Active Directory team. The candidate will support implementation and design services for Microsoft Active Directory certificate services, identity, and access management. The candidate will provide support for Windows-based systems across the...


  • Washington, United States Eliassen Group Full time

    The Senior Active Directory Engineer will play a critical role in a wide role of high-profile projects support Active Directory team. The candidate will support implementation and design services for Microsoft Active Directory certificate services, identity, and access management. The candidate will provide support for Windows-based systems across the...


  • Washington, Washington, D.C., United States ARFA Solutions, LLC Full time

    Company OverviewARFA Solutions, LLC is an equal opportunity employer committed to providing a hybrid working environment that fosters collaboration and innovation. Our team is comprised of talented professionals who share a passion for delivering exceptional results. If you are a motivated individual with a strong background in Active Directory engineering,...


  • Washington, United States Apex Systems Full time

    Apex Systems is looking for an Active Directory Engineer to support one our Government Integrators here in the DC area. If you are interested and meet the below qualifications, please send an updated resume to Cameron at to apply! Title: Active Directory Ops/Engineer Location: Washington D.C. Clearance: Active Secret Clearance/Interim Top Secret Clearance...


  • Washington, United States Eliassen Group Full time

    Job Summary">The Eliassen Group is seeking a highly skilled Enterprise Active Directory Specialist to join our team. This senior-level role requires extensive knowledge of multi-vendor server operating systems, particularly in the context of enterprise Windows environment operations and maintenance (O&M) and engineering.This key position plays a critical...


  • Washington, United States Serigor Inc. Full time

    Job DescriptionJob DescriptionJob Title: Active Directory engineer (IAM) - Security (Onsite)Location: Washington, DCDuration: 12 Months+Job Description:Messaging and Directory Services Subject Matter Expert (SME) position requires in-depth knowledge of Microsoft-based infrastructure design and development, messaging and directory services best-practices and...


  • Washington, United States Serigor Inc. Full time

    Job DescriptionJob DescriptionJob Title: Active Directory engineer (IAM) - Security (Onsite)Location: Washington, DCDuration: 12 Months+Job Description:Messaging and Directory Services Subject Matter Expert (SME) position requires in-depth knowledge of Microsoft-based infrastructure design and development, messaging and directory services best-practices and...


  • Washington, United States Serigor Inc. Full time

    Job DescriptionJob DescriptionJob Title: Active Directory engineer (IAM) - Security (Onsite)Location: Washington, DCDuration: 12 Months+Job Description:Messaging and Directory Services Subject Matter Expert (SME) position requires in-depth knowledge of Microsoft-based infrastructure design and development, messaging and directory services best-practices and...


  • Washington, United States Serigor Inc. Full time

    Job DescriptionJob DescriptionJob Title: Active Directory engineer (IAM) - Security (Onsite)Location: Washington, DCDuration: 12 Months+Job Description:Messaging and Directory Services Subject Matter Expert (SME) position requires in-depth knowledge of Microsoft-based infrastructure design and development, messaging and directory services best-practices and...


  • Washington, United States Bank of America Full time

    IAM Privileged Access Mgmt. Engineer (Active Directory / CLOUD)Location: Denver, Colorado; Washington, District of Columbia; Chicago, IllinoisJob Description:At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our...


  • Washington, Washington, D.C., United States ARFA Solutions, LLC Full time

    Job SummaryARFA Solutions, LLC is seeking a skilled Active Directory Engineer to join our team. As an Active Directory Engineer, you will be responsible for the design, implementation, and management of our Active Directory infrastructure. You will collaborate with cross-functional teams to ensure the reliability, security, and scalability of our directory...


  • Washington, Washington, D.C., United States ARFA Solutions, LLC Full time

    Responsibilities and RequirementsIn this role, you will be responsible for the following key responsibilities:Designing and implementing the Active Directory infrastructure, including domain controllers, forests, and trusts.Managing user accounts, groups, and permissions within Active Directory.Implementing and maintaining security measures, such as access...


  • Washington, United States General Dynamics Information Technology Full time

    REQ#: RQ185003 Public Trust: None Requisition Type: Regular Your Impact Own your opportunity to serve as a critical component of our nation's safety and security. Make an impact by using your expertise to protect our country from threats. Job Description Systems Administrator - Active Directory Forests - Active Top Secret Required Seize your opportunity to...


  • Washington, United States Peraton Full time

    ResponsibilitiesResponsibilitiesinclude butare not limited to:• Principal Active Directory Subject Matter Expert (SME) will support our enterprise Active Directory environment serving critical programs with classified information system capabilities• Success in this role means you can architect, design, deploy, secure, maintain, and troubleshoot the...


  • Washington, United States S&P Global Full time

    About the Role: Grade Level (for internal use): 13 The Team: You will work with a talented team of IAM Engineers to define the architecture and strategy of Directory Services. This team is committed to reducing cyber risk while handling migrations, integrations, and consolidations. In this role, you will lead a dedicated team of directory services engineers...


  • Washington, Washington, D.C., United States Serigor Inc. Full time

    About Serigor Inc.Serigor Inc. is a leader in delivering cutting-edge solutions to organizations seeking to enhance their IT infrastructure. We specialize in designing, implementing, and managing secure, scalable systems that meet the evolving needs of our clients.Job Description:Azure AD and Cloud Authentication ExpertWe are seeking an experienced Azure AD...


  • Washington, United States Eliassen Group Full time

    Key Responsibilities">Daily system monitoring and verification of hardware, server resources, systems, and key processesTroubleshooting complex production, application, or system problemsCollaboration with project teams to implement new solutions and initiativesMaintenance of accurate documentation for domain technologies, including installation,...


  • Washington, United States Enssolutions Full time

    As a Software Development Engineer with a focus on Identity and Access Management (IDAM), you will leverage your expertise in both software development and IDAM to provide operational support and advanced engineering solutions for Identity Access Management, including provisioning, authentication, and access management for both cloud and on-premise...


  • Washington, United States ENS Solutions Full time

    Job DescriptionJob DescriptionAs a Software Development Engineer with a focus on Identity and Access Management (IDAM), you will leverage your expertise in both software development and IDAM to provide operational support and advanced engineering solutions for Identity Access Management, including provisioning, authentication, and access management for both...