Overview
Skills
Job Details
This position is 100% remote, living in CST or EST time zone (prefer Texas, Alabama, Arkansas, Oklahoma, Missouri, Mississippi, or surrounding states etc
MUST HAVES .
7+ years of relevant experience as a an Active Directory Specialist (Systems Admin)
- Experience configuring domain controllers AND managing Active Directory forests
- Experience with "LAPS (Local Admin, password, solutions) AND ACL's ( Access Control lists,) troubleshoot, clean up and fix
- Experience implementing Zero Trust security models in AD environments
4) Experience extending AD schemas/raising AD forests, working in complex AD environments
5) Experience in Banking/Financial Services industry
7+ years of relevant experience
- Responsibilities
-Work in complex, multi-domain, multi-forest environments,
-Analyze and remediate Active Directory security vulnerabilities identified in a cybersecurity audit.
-Implement security best practices across the AD infrastructure, ensuring compliance with banking and financial industry regulations.
-Triage Active Directory domain controllers, as required, ensuring their security, redundancy, and operational efficiency.
-Refactor Active Directory forests, including schema extensions and forest upgrades, as required to ensure audit compliance.
-Implement and/or modify group policy updates, access controls, and role-based access models to mitigate security risks.
-Enhance AD monitoring, logging, and auditing capabilities to support security and compliance efforts.
-Collaborate with cybersecurity, infrastructure, and compliance teams to ensure AD security aligns with corporate policies.
-Provide expertise in Active Directory Federation Services (ADFS) and related identity federation technologies.
-Ensure compliance with NIST, ISO 27001, FFIEC, SOX, and other financial security frameworks, as required by client and/or audit requirements.
Required Experience
-7+ years of experience managing Active Directory (AD) environments in enterprise settings.
-2+ years experience implementing AD solutions within banking/financial services environments.
-Deep expertise in Active Directory security, architecture, and administration.
-Proven experience in remediating AD security risks and implementing security controls.
-Strong knowledge of domain controllers, AD forests, AD trusts, and Group Policy.
-Experience with AD schema extensions, forest raises, and AD migrations.
-Hands-on experience managing complex AD environments in a banking or financial services institution.
-Knowledge of identity & access management (IAM) best practices in financial regulatory environments.
-Familiarity with Kerberos authentication, LDAP, SAML, and similar identity protocols.
-Strong understanding of PowerShell scripting for AD automation and security hardening.
-Experience working within SOX, PCI-DSS, FFIEC compliance frameworks.
-Microsoft Certifications (e.g., MCSE, Microsoft Certified: Identity and Access Administrator, Microsoft 365 Certified).
-Knowledge of Azure Active Directory (AAD) and cloud identity integrations.
-Experience implementing Zero Trust security models in AD environments.