Active Directory Systems Administrator

Job Title: Active Directory Systems Administrator
Job Location: Washington, DC - Onsite - Preferring a local resource
Top Skills: Exp. administering Azure Active Directory environment (Azure AD), Okta (SSO & MFA), Protocols (SAML, OAuth, OpenID Connect, and LDAP), Identity Governance (SailPoint or Saviynt).

Job Description:

Responsibilities:

• Administer and manage on-premises Active Directory environment, ensuring it is secure, highly available, and properly configured.
• Oversee Group Policy Objects (GPOs), Trusts, DNS, AD Sites and Services, and other AD components.
• Perform user provisioning and de-provisioning, ensuring the application of best practices for Active Directory security (e.g., least privilege, proper account permissions, password policies).
• Implement and manage Active Directory Federation Services (ADFS) for authentication and federation with cloud and external resources.
• Manage Azure Active Directory (Azure AD) for cloud-based identity management, including the integration of on-premises AD with Azure AD using Azure AD Connect.
• Administer Azure AD conditional access policies, ensuring secure and compliant access to cloud applications and resources.
• Implement and configure Azure AD B2C (Business-to-Consumer) for user authentication in external-facing applications.
• Manage Azure AD Connect, including troubleshooting, synchronization, and ensuring proper user identity lifecycle management.
• Oversee the administration and integration of Okta for identity management, single sign-on (SSO), and multi-factor authentication (MFA) solutions.
• Ensure the seamless integration of Okta with internal and third-party applications (e.g., Office 365, Salesforce, Google Workspace).
• Manage and configure Okta Universal Directory, Lifecycle Management, and API Access Management.
• Monitor the health and performance of AD, Azure AD, and Okta environments, proactively addressing any iss ues or potential vulnerabilities.
• Develop and maintain PowerShell scripts for automating common tasks related to Active Directory, Azure AD, and Okta.
• Create and maintain comprehensive documentation for all identity management systems and processes.

Qualifications:

• Bachelor s degree in computer science, Information Technology, Cybersecurity, or a related field. Equivalent work experience may also be considered.
• 5+ years of hands-on experience in Identity and Access Management (IAM) with a strong focus on Active Directory, Azure AD, and Okta administration.
• Certifications: Microsoft Certified: Azure Solutions Architect, Okta Certified Administrator, or other relevant IAM/security certifications.
• Proficient in Active Directory (AD) administration, including Group Policy, Active Directory Federation Services (ADFS), and AD sites/replication.
• Strong experience managing and administering Azure Active Directory (Azure AD), including Azure AD Connect, Conditional Access, and Azure AD B2C.
• Expertise in Okta configuration, including SSO, MFA, Lifecycle Management, and API Access Management.
• Proficient in using PowerShell for automation and management of AD and Azure AD environments.
• Knowledge of IAM-related protocols like SAML, OAuth, OpenID Connect, and LDAP.
• Familiarity with security best practices in identity management, including multi-factor authentication (MFA) and role-based access control (RBAC).
• Ability to analyze and resolve complex IAM issues, including authentication, access, and security problems.
• Strong verbal and written communication skills, capable of explaining complex technical issues to both technical and non-technical stakeholders.
• Ability to work cross-functionally with other teams, such as security, network, and applications teams, to address identity management challenges.