Security Domain Administrator

Description

We are seeking a highly skilled Security Operations Domain Administrator with expertise in managing and optimizing on-premises Active Directory and Microsoft 365 environments and ensuring the stability, security, and scalability for our client's large-scale global directory services infrastructure. This role requires proven hands-on experience in managing and securing enterprise-level organizations.

Work is done both in team and individual contributor roles. The pace of work is fast and can change quickly based on current security risks. Thus, the qualified individual must be flexible and able to manage multiple tasks. They must also be willing and eager to learn new and emerging technologies and skills, both while at work and on their own time. The analyst will be required to be on call according to a set schedule and be willing to quickly respond to security and operational incidents when called upon.

Job Functions / Responsibilities

The ideal candidate will have a deep functional understanding of Windows 10/11, Windows Server, Active Directory Domain Services, Group Policy, DNS, PKI, SSO Federation services, and Entra ID services. They will also have strong proficiency in Advanced PowerShell scripting for automation. This individual will be responsible for daily domain administration tasks, troubleshooting complex issues, and will take an active role in ongoing Information Security and Security Operations projects.

Qualifications

•5-7 years of experience as a Systems Engineer in a medium to large enterprise environment with primary duties in Windows domain administration and managing Active Directory infrastructure

•Deep expertise in installation, operation, and maintenance of highly complex, enterprise-level Active Directory Domain Services in a hybrid on-premises and Microsoft Entra (Azure AD) cloud environment

•Hands-on experience implementing and maintaining Group Policy, Multi-Factor Authentication (MFA), Conditional Access policies, Azure tenant configurations, and Azure AD Single Sign-On integrations

•Expertise with IT infrastructure technologies including DNS, DHCP, PKI, and certificate management

•Advanced skills in writing and maintaining PowerShell scripts for automating identity management, compliance reporting, and service configurations across the enterprise

•Experience in supporting critical IAM processes including overall identity management and working with federation technologies such as SAML, OpenID Connect and OAuth

•Excellent problem-solving skills and the ability to troubleshoot complex technical issues

•Strong communication skills and the ability to work effectively with cross-functional teams

•Ability to create and maintain system documentation including system configuration and troubleshooting

•Experience monitoring and working out of an ITSM ticketing system such as ServiceNow

•Availability to work “on-call” 24 hours/day for emergencies, and flexibility in schedule

•Familiarity with domain-related disaster recovery and business continuity planning

Skills

Windows Administration, Active Directory, System Administrator, Windows, Troubleshooting, Security, PowerShell scripting, automation, BeyondTrust, Sumo Logic, Venafi

Top Skills Details

Windows Administration, Active Directory, System Administrator, Windows, troubleshooting, Security, PowerShell scripting, automation

Additional Skills & Qualifications

Education

•Bachelor's degree strongly desired, a B.S. in Computer Science, Information Systems, or closely-related field is preferred

•Minimum requirement of a Technical College diploma with equivalent work experience

•CISSP, Microsoft role-based Expert certification, or equivalent industry certification strongly desired

Additional Job Board Information

We are an Equal Opportunity Employer/Protected Veteran/Disability.

Experience Level

Intermediate Level