CrawlJobs Logo
Software Resources Logo Software Resources · IT - Software Development

Senior Active Directory Engineer

United States, Burbank 94.00 - 97.00 USD / Hour · Job Posted January 08, 2026
Apply Position
Job Link Share

Job Description

Software Resources has an immediate job opportunity for a Senior Active Directory Engineer with a major corporation in Burbank, CA. 4 days on-site, Friday remote. Duration: 9 month(s).

Job Responsibility

  • AD modernization and standardization initiative, migrating on-premises Active Directory lifecycle management to a cloud-first identity model (Microsoft Entra ID/Azure AD)
  • Maintain and manage local AD on-prem devices and domain controllers, including operational support, incident response, and running reports (e.g., Power BI)
  • Collaborate with architects and senior engineers
  • contribute to process and system configuration, but not lead design efforts
  • Identify and implement automation opportunities to reduce manual tasks and ticket volume, proactively improving lifecycle management and user experience
  • Lead the assessment and analysis of the Domain controllers in the AD forest
  • Document and guide the operations team with the decommissioning, upgrade and migration of domain controllers
  • Analyze the existing use of PKI certificates in legacy directories and help migrate them into Microsoft's PKI service
  • Evaluate capabilities of services/products and design solutions to deliver future service offerings through detailed technical analysis
  • Define engineered designs, including full documentation
  • Follow structured methodologies for technical analysis of products and solutions
  • No on-call responsibilities
  • operational support team handles after-hours issues
  • Domain Controller Consolidation: Assess existing domain controllers, identify consolidation opportunities, and develop a migration strategy
  • Perform domain controller upgrades, decommissioning etc
  • Ensure replication integrity and domain health during consolidation
  • PKI Certificate Migration & Cleanup: Analyze existing PKI infrastructure and certificates
  • Migrate certificates to a modern PKI infrastructure with minimal disruption
  • Revoke, renew, and replace legacy or non-compliant certificates
  • Ensure compliance with security policies and best practices
  • Active Directory Administration & Cleanup: Identify and remove stale objects, orphaned accounts, and unused policies
  • Optimize AD replication, site topology, and group policy objects (GPOs)
  • Implement best practices for AD security, auditing, and hardening
  • Troubleshooting & Support: Diagnose and resolve AD, DNS, and PKI-related issues
  • Work with security and infrastructure teams to remediate vulnerabilities
  • Document configurations, policies, and procedures for future reference

Requirements

  • Minimum of 5 years of related work experience
  • Demonstrated experience designing, implementing, and integrating enterprise-level highly connected hybrid LDAP solutions with at least 40,000 users, including: Active Directory, Azure Active Directory, Microsoft Identity Manager, Active Directory Federation Services / AADC
  • Integrations between key services and various LDAP providers
  • Experience in engineering, designing, and integrating both infrastructure components (domain controllers, sites and services, connectivity, etc.) and logical aspects (GPO management, directory structure, and management toolsets)
  • Experience in project management of large IT initiatives
  • Experience working with and directing suppliers in an outsourced environment infrastructure
  • BA/BS Mandatory

What we offer

  • medical, dental, and vision coverage
  • a 401(k) with company match
  • short-term disability
  • life insurance with AD&D
Software Resources - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Senior Active Directory Engineer

8 matching positions

Senior Windows Engineer, Active Directory and Server Platforms

Moderna is expanding our footprint to deliver the greatest possible impact to pe...
Location
Location
United States , Cambridge
Salary
Salary:
130800.00 - 209400.00 USD / Year
modernatx.com Logo
Moderna
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in computer science, engineering, or related field (or equivalent experience)
  • 3-5 years deploying, securing and maintaining a global Active Directory environment
  • 7–10 years of professional experience supporting Microsoft Windows Server environments including all role and features
  • Proven experience operating enterprise-scale Windows Server environments, including performance, patching, and reliability
  • Deep ability to troubleshoot authentication, replication, network, and performance issues
  • Experience with patch management process and tooling, endpoint protection, and server hardening
Job Responsibility
Job Responsibility
  • Own the architecture, health, and security of Active Directory, including forests, domains, trusts, and replication topology
  • Lead advanced integration and troubleshooting of authentication and identity (Kerberos, NTLM, SPNs, delegation, replication)
  • Design and enforce Active Directory security controls, including tiered administration models (Tier 0/1/2) and privileged access strategies
  • Architect, manage, and secure enterprise PKI (ADCS), including certificate lifecycle, template governance, and CRL distribution
  • Define and maintain standards for Group Policy design, DNS architecture, and domain-joined systems
  • Own the operational health, lifecycle, and performance of enterprise Windows Server platforms (2016/2019/2022/2025)
  • Lead server lifecycle management, including build standards, patching strategy, compliance, and decommissioning
  • Drive root cause analysis for complex systems, authentication, and performance issues across distributed environments
  • Define and enforce standards for server configuration, hardening, monitoring, and resiliency
  • Develop and maintain automation using PowerShell and related tooling to improve consistency and efficiency
What we offer
What we offer
  • Best-in-class healthcare coverage, plus voluntary benefit programs to support your unique needs
  • A holistic approach to well-being, with access to fitness, mindfulness, and mental health support
  • Family planning benefits, including fertility, adoption, and surrogacy support
  • Generous paid time off, including vacation, volunteer days, sabbatical, global recharge days, and a discretionary year-end shutdown
  • Savings and investment opportunities to help you plan for the future
  • Location-specific perks and extras
  • Fulltime
Read More
Arrow Right

System Engineer-Active Directory, Azure AD

The NTT DATA Services Security organization is looking for talented security-ori...
Location
Location
Mexico , Guadalajara
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 5 years relevant experience in Architecture and designing, solutions & Migrating Active Directory, Azure AD, Windows & End points
  • Strong Demonstrated experience with Active Directory migration tool or equivalent and consolidation of Global Forest and Domains. Hands on experience in successful consolidation of AD Forests and Domains
  • Must have hands-on experience working on Azure AD (Azure Active Directory)
  • Extensive Experience working as Azure Admin for enterprise Active Directory setup and maintenance
  • Strong experience in AD Trusts, two-way Trusts and one-way Trusts and deep knowledge of Active Directory Schemas and meta data
  • Strong Knowledge on Azure AD Identity Management & Integration with on premise
  • Strong knowledge of Azure Active Directory technologies, including authentication models, federation, Multifactor Authentication (MFA), conditional access policies and other relevant capabilities.
  • Knowledge of best practices in AD/Azure Privileged access management and modern AD/Azure Secured Administration practices
  • Strong PowerShell scripting
  • Strong Knowledge on IAM disciplines like PIM and Privilege Administrative Accounts PAM solutions such as CyberArk
Job Responsibility
Job Responsibility
  • Active Directory designing, Architecture Solutions, Integration with platforms & Applications
  • Certificate Management and PKI
  • Develop an architecture of directory solutions for Windows, Unix, and related platforms
  • Experience in consolidations of multiple forest and domains and demonstrated understanding on User accounts, machine accounts, GPOs
  • Understand the requirement and create a migration plan for any services i.e. DNS, DHCP, and Certificate Services (PKI) etc.
  • Analyzing the requirement and design a solution to fulfil the requirement with zero impact to other platforms
  • Develop a power shell scripting with AD modules or VB .Net based on the requirements
  • Manage Azure active directory design, Architect Solutions, Integration with platforms & Applications and AD connector to Azure
  • Auditing the security logs and integrating with SIEM
  • Conducting POC with multiple vendors for AD solutions and prepare detailed test cases. Create a clear recommendation document with pros and cons for senior management
  • Fulltime
Read More
Arrow Right

IAM Senior Engineer - Active Directory/Entra ID

HPE Global IT is seeking a highly skilled Senior Active Directory (AD), Entra ID...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience)
  • 10+ years of IT or cybersecurity experience
  • 7+ years focused on AD, Entra ID, and Azure identity engineering in enterprise-scale environments
  • Deep hands-on experience managing multi-forest AD environments (schema, replication, delegation, GPOs, DNS, DHCP)
  • Strong expertise with Entra ID and hybrid identity integration (Entra Connect / Cloud Sync, federation, SSO)
  • Hands-on experience with Azure governance, RBAC, PIM, and access policy enforcement
  • Experience implementing conditional access, passwordless, and phishing-resistant MFA in Entra and Azure
  • Proficiency in PowerShell scripting, Graph API, and Azure automation for identity management and reporting
  • Solid understanding of authentication protocols (Kerberos, NTLM, LDAP, SAML, OIDC, OAuth2)
  • Familiarity with Zero Trust, tiered admin models, and directory hardening practices
Job Responsibility
Job Responsibility
  • Engineer, deploy, and optimize Active Directory, Entra ID, and Azure identity services across enterprise-scale hybrid environments
  • Design and manage multi-forest AD architectures, including schema extensions, replication, delegation, and hardening
  • Implement and maintain cross-domain and cross-tenant synchronization between AD and Entra ID using Entra Connect or Cloud Sync
  • Engineer secure authentication and federation flows leveraging Kerberos, NTLM, SAML, OIDC, and OAuth2
  • Implement and enhance conditional access, MFA, passwordless, and FIDO2 authentication methods in Entra and Azure environments
  • Support Zero Trust Directory Security through tiered administration, least privilege, and delegated access controls
  • Partner with cloud and infrastructure teams to ensure secure integration of Azure resources with enterprise identity services
  • Maintain and secure domain controllers, DNS, DHCP, and Group Policy Objects (GPOs) across global environments
  • Manage Azure AD tenants, subscriptions, and resource access controls (RBAC, PIM, Entra roles)
  • Integrate on-prem AD with Azure workloads, Microsoft 365, Intune, and other SaaS applications
What we offer
What we offer
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Comprehensive suite of benefits supporting physical, financial and emotional wellbeing
  • Fulltime
Read More
Arrow Right

Senior Engineer – Binary Services & Developer Enablement - Assistant Vice President

This is a challenging and exciting opportunity to work on Binary Service (Artifa...
Location
Location
India , Pune
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must be a self-starter, effective listener & communicator, problem solver and team player
  • Minimum of 8 years of technical support experience
  • Strong understanding of Enterprise pipeline and technology stack and at least two years of hands-on experience
  • 4+ years of experience with Linux (shell/batch scripting & server management), Java, LDAP, Active Directory, Oracle/SQL Server database (SQL, backup & recovery)
  • Good understanding of SaaS service and managing such service as an enterprise level consumer of vendor service
  • Bachelor’s Degree in Computer Science or a Related Field
Job Responsibility
Job Responsibility
  • Operational SME for Binary Service Platform (Artifactory)
  • Operational SME for Developer Pipeline integration with Binary Service
  • Troubleshoot technical issues and manage customer expectation
  • Reduce recurring issue using root cause analysis
  • Proactively monitor and manage infrastructure stability and performance
  • Upgrade existing product along with Engineering
  • Adopt new technology that gives competitive advantage to Citigroup Developers
  • Identify automation opportunity and implement solution to improve operational efficiency and user experience
  • Adopt AI solution to improve developer experience
  • Manage infrastructure level risk & compliance issues as per Citi guidelines
  • Fulltime
Read More
Arrow Right
New

Active Directory Technical Manager

We are seeking a highly skilled Active Directory Technical Manager to join the C...
Location
Location
United States , Houston
Salary
Salary:
Not provided
revelit.com Logo
Revel IT
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Technology, or a related field (or equivalent experience)
  • 7+ years of hands-on experience with on-premises Active Directory, including: Deep expertise in AD architecture: Designing, deploying, and managing multi-domain/forest environments, trusts, and schema modifications
  • Proven track record in AD migrations: Using tools like ADMT, Quest Migration Manager, or PowerShell for large-scale user/object migrations, SID history preservation, and domain consolidation
  • Extensive troubleshooting of on-prem AD issues: Replication (DFS-R/SYSVOL), DNS integration, certificate services (AD PKI), and performance optimization in environments with 20+ years of legacy buildup
  • Experience with Group Policy management, including inheritance, filtering, and troubleshooting in complex setups
  • 3+ years of lead or senior engineer experience: Guiding teams on technical projects, mentoring peers and influencing decisions without direct managerial authority
  • Solid understanding of hybrid AD environments: 2+ years working with Entra ID (Azure AD) for synchronization, single sign-on (SSO), and cloud identity management
  • Familiarity with Azure AD Connect, Pass-through Authentication, and Entra ID governance features
  • Proficiency in scripting and automation: PowerShell for AD administration, querying (e.g., Get-ADUser, Get-ADComputer), and bulk operations
  • Strong knowledge of AD security: Implementing least privilege, auditing, and compliance with standards like NIST or CIS benchmarks
Job Responsibility
Job Responsibility
  • Lead the planning, execution, and optimization of Active Directory operations, with a strong emphasis on on-premises domain management, including domain controllers, forests, sites, services, and Group Policy Objects (GPOs)
  • Oversee ongoing domain migrations, including workstation (35,000+ endpoints), server, and application transitions from legacy domains to a consolidated, modern structure
  • address stalled initiatives by implementing automation and best practices
  • Manage hybrid AD configurations, ensuring seamless synchronization between on-prem AD and Entra ID using tools like Azure AD Connect
  • handle identity federation, conditional access policies, and cloud integration for 20% of our cloud-native workloads
  • Provide technical leadership to a team of 5-10 AD engineers: mentor juniors, conduct code/script reviews, assign tasks, and foster a collaborative environment without formal HR management duties
  • Troubleshoot and resolve complex AD issues, such as replication failures, schema extensions, security vulnerabilities (e.g., Kerberos, LDAP hardening), and integration with legacy M&A domains
  • Develop and maintain documentation, scripts (PowerShell preferred), and automation for AD health monitoring, backup/recovery, and compliance (e.g., with tools like ADDS, DataDog, or third-party solutions)
  • Collaborate with cross-functional teams (security, applications, networking) to assess dependencies, mitigate risks during migrations, and ensure minimal downtime in critical operations
  • Stay ahead of AD best practices, including security enhancements (e.g., Privileged Access Management) and evaluate emerging tools for hybrid environments
What we offer
What we offer
  • Competitive salary and benefits package
  • Opportunities for professional growth, including transitioning to full management roles
  • A dynamic environment where your technical expertise directly influences enterprise-scale transformations
  • Flexible work options, including hybrid remote/on-site
  • Fulltime
Read More
Arrow Right

Senior Engineer – (Systems Engineering, Enterprise Infra & Platform Support)

The Senior Infrastructure & Platform Support Engineer provides end-to-end techni...
Location
Location
United States , Chevy Chase
Salary
Salary:
80000.00 USD / Year
geico.com Logo
Geico
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience leading engineering efforts or owning internal, enterprise-scale platforms and working directly with enterprise customers
  • Familiarity with enterprise application lifecycle (selection, deployment, user adoption, decommission, integration layers)
  • Strong background in enterprise infrastructure supporting Windows and Linux systems, including builds, configuration, hardening, and troubleshooting
  • Advanced skills with Windows Server, Active Directory, authentication protocols (Kerberos / LDAP / SAML / OAuth), and Azure AD/identity integrations
  • Solid Linux administration experience (Ubuntu, RHEL, or equivalent), with certifications preferred
  • Proficiency in automation and scripting (PowerShell, Bash, Python)
  • Strong understanding of networking fundamentals: TCP/IP, DNS, DHCP, routing, VPNs, firewalls, load balancers, VLANs, and secure connectivity
  • Hands-on experience with cloud platforms (Azure/AWS), hybrid environments, virtualization (vSphere/Hyper-V), and containers (Docker, Kubernetes)
  • Knowledge of monitoring and observability tools, such as Prometheus, Grafana, or equivalent solutions
  • Familiarity with database concepts, performance tuning, and integration of MySQL/PostgreSQL/SQL Server/Oracle with enterprise systems
Job Responsibility
Job Responsibility
  • Provide technical leadership to ensure strong engineering standards and operational excellence
  • Support, configure, and maintain both Linux and Windows server platforms, including application servers, integration components, and system services
  • Design and implement infrastructure solutions for workplace technologies including but not limited to digital mailroom, physical security & safety, and real estate facility management technology platforms—covering on-prem systems, hybrid setups, and SaaS applications
  • Build production-ready configurations emphasizing reliability, maintainability, scalability, and testability
  • Lead incident response, troubleshooting, root-cause analysis, and drive ongoing performance optimization
  • Execute DevOps activities including CI/CD pipeline management, automation scripting, monitoring setup, and Infrastructure as Code
  • Ensure platform observability through logging, alerting, dashboards, and automated health checks
  • Apply secure design practices, compliance controls, network segmentation, encryption, and access management
  • Manage platform lifecycle activities such as patching, upgrades, capacity planning, backups, disaster recovery and identifying opportunities for automation and standardization
  • Collaborate with cross-functional teams, vendors, and senior engineers, communicating clearly with technical and non-technical stakeholders
What we offer
What we offer
  • Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being
  • Financial benefits including market-competitive compensation
  • a 401K savings plan vested from day one that offers a 6% match
  • performance and recognition-based incentives
  • and tuition assistance
  • Access to additional benefits like mental healthcare as well as fertility and adoption assistance
  • Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program, which offers the ability to work from anywhere in the US for up to four weeks per year
  • Fulltime
Read More
Arrow Right

Senior Engineer – Binary Services & Developer Enablement

This is a challenging and exciting opportunity to work on Binary Service (Artifa...
Location
Location
India , Chennai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must be a self-starter, effective listener & communicator, problem solver and team player
  • Minimum of 8 years of technical support experience
  • Strong understanding of Enterprise pipeline and technology stack and at least two years of hands-on experience
  • 4+ years of experience with Linux (shell/batch scripting & server management), Java, LDAP, Active Directory, Oracle/SQL Server database (SQL, backup & recovery)
  • Good understanding of SaaS service and managing such service as an enterprise level consumer of vendor service
Job Responsibility
Job Responsibility
  • Operational SME for Binary Service Platform (Artifactory)
  • Operational SME for Developer Pipeline integration with Binary Service
  • Troubleshoot technical issues and manage customer expectation
  • Reduce recurring issue using root cause analysis
  • Proactively monitor and manage infrastructure stability and performance
  • Upgrade existing product along with Engineering
  • Adopt new technology that gives competitive advantage to Citigroup Developers
  • Identify automation opportunity and implement solution to improve operational efficiency and user experience
  • Adopt AI solution to improve developer experience
  • Manage infrastructure level risk & compliance issues as per Citi guidelines
  • Fulltime
Read More
Arrow Right

Endpoint & AD Senior Engineer

We are working with a company that are globally recognised in what they do and a...
Location
Location
United Kingdom , London
Salary
Salary:
70000.00 - 85000.00 GBP / Year
planetrecruitment.co.uk Logo
PLANET RECRUITMENT SERVICES LTD
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 6 years Windows endpoint engineering in enterprise environments (15,000+ device scale)
  • Minimum 5 years Microsoft Entra ID (Azure AD) administration including Conditional Access exposure
  • Minimum 5 years Active Directory administration in multi-forest or large single-forest environments
  • Minimum 3 years Microsoft Entra Connect Sync (or Azure AD Connect) – must be able to troubleshoot sync independently
  • Minimum 3 years Microsoft Intune administration in production at scale
Job Responsibility
Job Responsibility
  • Active Directory administration across multiple forests (user lifecycle, group management, OU design, GPO maintenance)
  • Entra Connect Sync operations – monitor sync health, troubleshoot sync failures, resolve object conflicts, manage staging modes
  • Entra Hybrid Join troubleshooting for Windows devices
  • Intune policy operations: compliance, configuration, app deployment, Update Rings
  • Windows Autopilot profile management – troubleshooting, adjustments, new scenario support
  • Application packaging and deployment via Intune (Win32 apps, MSI, scripts)
  • Device compliance troubleshooting and remediation
  • Fulltime
Read More
Arrow Right