Microsoft Active Directory (AD) Engineer

Overview

On Site
Depends on Experience
Contract - Independent
Contract - W2
Contract - 6 Month(s)

Skills

Access Control
Active Directory
Analytical Skill
Auditing
Backup
Cloud Computing
Collaboration
Communication
Cyber Security
DHCP
DNS
DS
DirectShow
Directory Services
Disaster Recovery
Documentation
Dragon NaturallySpeaking
Group Policy
Hardening
Identity Management
LDAP
Management
Microsoft
Microsoft Azure
Microsoft Certified Professional
Migration
NIST SP 800 Series
Regulatory Compliance
Replication
SSO
SailPoint
Scripting
Windows PowerShell
MCSA
MCSE
IAM
ADManager Plus
PAM
IGA
AD FS
GPOs
Active Directory Domain Services
Active Directory Federation Services
Group Policy Objects
CMMC

Job Details

We are seeking a highly skilled and experienced Active Directory Expert to manage, maintain, and optimize our enterprise Active Directory environment and to use such expertise in getting a specific Active Directory compliant for CMMC compliance. The ideal candidate should have a deep understanding of Microsoft identity and access management services, including AD DS, AD FS, and Group Policy with strong troubleshooting and scripting skills. Candidate required to be .

Key Responsibilities:

  • Design, implement, and maintain Active Directory Domain Services (AD DS) across multi-site environments.
  • Manage Group Policy Objects (GPOs), Organizational Units (OUs), and user/computer accounts.
  • Monitor and optimize Active Directory replication, performance, and health.
  • Implement and manage Active Directory Federation Services (AD FS) and Azure AD integration.
  • Configure and troubleshoot DNS and DHCP services related to AD.
  • Ensure security best practices for AD infrastructure, including role-based access control, auditing, and hardening.
  • Develop and maintain PowerShell scripts for automation of routine AD tasks.
  • Collaborate with the security and compliance teams on identity governance and access control.
  • Support hybrid identity infrastructure (on-prem and cloud).
  • Participate in disaster recovery planning and backup strategies for directory services.
  • Perform domain migrations, trust configurations, and forest design as needed.

Required Skills and Qualifications:

  • Proven experience (5+ years) managing enterprise-scale Active Directory environments.
  • In-depth knowledge of Active Directory, DNS, DHCP, GPOs, AD FS, Azure AD, and LDAP.
  • Experience with PowerShell scripting and automation tools.
  • Understanding of identity federation, SSO, and conditional access policies.
  • Familiarity with Microsoft security baselines and compliance frameworks.
  • Strong analytical and troubleshooting skills.
  • Excellent documentation and communication skills.

Preferred Qualifications:

  • Microsoft Certifications such as MCSA/MCSE, Microsoft Certified: Identity and Access Administrator Associate, or Azure Solutions Architect.
  • Experience with tools like ADManager Plus, Quest.
  • Exposure to Zero Trust, Privileged Access Management (PAM), or Identity Governance and Administration (IGA).
  • Experience with cloud identity platforms like Okta, Ping Identity, or SailPoint is a plus.
  • Exposure or knowledge of Cybersecurity Maturity Model Certification (CMMC), NISTSP800-171, NISTSP800 172 a plus.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.