Active Directory Engineer

As an experienced Microsoft Active Directory Engineer, you will be responsible for maintaining and enhancing a complex enterprise AD environment. You should be comfortable working both independently and as part of a team, given the evolving work landscape. Proactively identifying solutions, troubleshooting complex issues, and improving existing identity services will be central to your role. A strong security focus is also expected, with an emphasis on fortifying Active Directory, authentication services, and access management.

• Oversee and enhance Active Directory (AD) architecture, ensuring scalability, security, and performance.
• Work on forest and domain migrations, including cross-forest trusts and multi-domain environments.
• Implement AD security enhancements, focusing on identity protection, conditional access, and secure authentication methods.
• Manage AD replication, GPO configurations, forest recovery strategies, and trust relationships.
• Support and optimize Azure Active Directory (AAD), including AAD Connect, identity federation, and authentication policies.
• Administer ADFS (Active Directory Federation Services) and its integration with cloud and on-prem applications.
• Develop and maintain PowerShell automation scripts to enhance AD management and security.
• Utilize third-party tools such as Quest Active Roles, GPOAdmin, and Recovery Manager for streamlined identity management.
• Implement and manage Multi-Factor Authentication (MFA) solutions, ensuring a seamless and secure user experience.
• Collaborate with internal teams to strengthen security policies and drive continuous improvement in identity governance.

• A degree in IT, Computer Science, or a related field.
• Fluent in English, with strong written and verbal communication skills.
• Experience working in large-scale enterprise AD environments with multiple forests and domains.
• Strong expertise in Windows Server administration, including Core editions.
• Hands-on experience with IAM security best practices and regulatory compliance.
• Familiarity with Agile, Lean, and ITIL methodologies.
• Proven ability to write technical documentation, design memos, and process handovers.

• Microsoft MCSA (2012 or later)
• MCSE: Server Infrastructure
• Microsoft Azure certifications

In addition to technical expertise, the following qualities are essential for success in this role:

• Proactive problem-solving - anticipating and resolving AD-related challenges.
• Security-first mindset - ensuring identity services remain resilient to threats.
• Strong communication - engaging with both technical and non-technical stakeholders.
• Adaptability - responding effectively to a dynamic IT landscape.
• Performance-driven - maintaining high standards in AD service availability and efficiency.

This role is heavily focused on Active Directory and identity services, making relevant hands-on experience a must. If you are passionate about directory services, security, and enterprise identity solutions, this is the perfect opportunity to make an impact!