Active Directory Engineer - Cloud Services

Position : Active Directory Engineer

Experience : 7 to 11 Years

Job Type : Summary :

We are seeking a highly experienced and technically proficient Active Directory (AD) Engineer with 7 to 11 years of experience.

The ideal candidate will be an expert in designing, implementing, securing, and maintaining complex AD infrastructure across multi-site enterprise environments.

This role is critical for ensuring the security, performance, and compliance of our core identity management system, including integration with modern cloud services like Entra ID (formerly Azure AD).

Key Responsibilities Design and Planning : Assess the current infrastructure and define detailed Active Directory requirements. Develop comprehensive AD architecture, including the domain structure, OU hierarchy, and strategic Group Policy Objects (GPOs). Plan robust DNS integration, replication topology, and site configuration.

• Implementation and Configuration : Lead the installation and configuration of Domain Controllers (DCs) across multiple physical and cloud sites. Expertly set up Organizational Units (OUs), configure GPOs, and manage the provisioning of user / computer accounts. Configure domain trusts, replication, and manage FSMO roles across the forest.
• Security and Compliance : Implement and enforce strict AD security best practices, including strong password policies and account lockout policies. Configure detailed auditing and logging for critical AD events. Ensure the AD environment maintains full compliance with internal standards and external regulatory requirements.
• Integration and Migration : Integrate Active Directory seamlessly with other essential enterprise services, such as Exchange, Entra ID (Azure AD), and VMware. Lead migration efforts for users, groups, and computers from any applicable legacy directory services.
• Monitoring and Maintenance : Set up sophisticated monitoring tools to track AD health, performance, and replication status proactively. Perform regular backups and disaster recovery testing to ensure business continuity. Troubleshoot and resolve complex, escalated AD-related issues.
• Documentation and Training : Create and maintain detailed implementation and configuration documentation. Develop and deliver training to IT support staff on effective AD management, GPO administration, and troubleshooting :
• Experience : 7+ years of hands-on experience as an Active Directory Administrator or Engineer in an enterprise environment.
• Architecture : Proven experience in designing and planning complex AD environments, including DNS, replication, and multi-domain / forest architectures.
• GPO and Scripting : Expert-level knowledge of Group Policy Management and experience with relevant scripting languages (PowerShell) for AD automation.
• Security : Deep understanding and implementation experience with AD security best practices, auditing, and compliance requirements.
• Integration : Direct experience integrating AD with cloud identity platforms (Entra ID / Azure AD) and enterprise applications (Exchange, VMware).
• Troubleshooting : Strong problem-solving skills for diagnosing and resolving complex, intermittent AD and domain services issues.

(ref : hirist.tech)