Windows Active Directory Architect / Engineer (Remote)

Remote Full-time
We are seeking a highly experienced Windows Active Directory Architect/Engineer with 10+ years of IT experience to lead the design, modernization, and security of enterprise identity and directory services across on-prem and cloud environments.

Key Responsibilities
• Act as SME and architect for On-Prem Active Directory and Azure Entra (Azure AD)
• Design and modernize hybrid identity, directory synchronization, federation, and Zero Trust architectures
• Lead large-scale AD and identity transformation projects, including cloud migrations, M&A, and enterprise modernization
• Architect and manage Group Policy (GPOs), Conditional Access, identity governance, and AD security models
• Analyze existing AD environments and implement architectural, security, and operational improvements
• Collaborate with security, infrastructure, and application teams to ensure seamless integration and compliance

Must-Have Skills & Experience
• 10+ years of IT experience, including 7+ years as a Windows Active Directory Engineer/Architect
• Deep expertise in AD architecture: domains, trusts, replication, sites & services, DNS, DHCP
• 3+ years of hands-on Azure Entra (Azure AD) experience (hybrid identity, Conditional Access, Identity Protection)
• Strong experience with Azure AD Connect, ADFS, SSO, LDAP, AD attributes, and permissions management
• Advanced PowerShell scripting & automation (beyond basic scripting)
• Strong knowledge of GPO design, analysis, item-level targeting, workstation and browser configurations
• Experience with PKI, Certificate Services, IIS, File/Print services
• Exposure to Intune, Intune Autopilot/ESP, Azure VDI, VMware VDI, modern endpoint management
• Familiarity with IaC, DSC, automation tooling, NuGet, Chocolatey, declarative/immutable environments
• Excellent troubleshooting and independent project leadership skills

Security & Endpoint Tools (Strong Plus)
• Microsoft Defender (Endpoint & Azure Services)
• CrowdStrike, ForcePoint, Qualys, RSA Endpoint

Preferred Qualifications
• Bachelor’s degree in Computer Science or related field
• Microsoft Windows certifications (highly desired)
• Background with Microsoft or a major consulting firm
• Experience securing Windows OS and enterprise endpoints

Apply Now

Apply Now
Apply Now →

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

Remote Data Entry Associate – Document Management & Transaction Processing Specialist

Remote

Account Manager

Remote

Live Customer Service - Remote Jobs No Experien...

Remote

Remote Data Entry Specialist – Part-Time Flexible Schedule | Entry-Level Friendly

Remote

Sr. Technical Project Manager

Remote

Care Management Support Assistant

Remote

Experienced Customer Service Representative – Newark, NJ Airport Operations at careerzynith

Remote

Remote customer service

Remote

Legal Specialist; Development Law

Remote

**Experienced Customer Service Representative – Work From Home Opportunity at arenaflex**

Remote
← Back