Ryder
Job Seekers can review the Job Applicant Privacy Policy by clicking here.
Job Description
: General Summary The Lead Directory Services Engineer plays a pivotal role in designing, engineering, and managing enterprise directory services. This crucial position merges advanced technical knowledge with strategic guidance, ensuring directory platforms remain stable, scalable, and secure across diverse environments. Candidates should possess in-depth expertise in Active Directory and related directory platforms, exceptional problem-solving skills, and a track record of leading impactful technical projects, including complex initiatives like multi-forest management, mergers and acquisitions, hybrid cloud integration, and legacy environment modernization. The engineer will act as a technical authority within the Identity and Access Management sector. Duties and Responsibilities Oversee the engineering, design, and lifecycle management of directory service platforms, including Active Directory and Azure Active Directory, across multiple environments, ensuring robust support for technologies like Sites and Services, Group Policy, and PKI. Manage multi-forest architectures and facilitate cross-entity trust relationships to guarantee smooth authentication and authorization, particularly during mergers and acquisitions, focusing on integration, migration strategies, post-migration stabilization, and thorough documentation. Lead efforts to establish technical standards, architectural roadmaps, and operational best practices for directory services, accompanied by ongoing system health assessments and capacity planning. Guide resolution of advanced issues related to authentication, replication, trusts, and integration with enterprise systems. Collaborate with networking and security teams to ensure directory services align strategically with security protocols, compliance regulations, and operational requirements. Create and maintain automation processes for provisioning, monitoring, reporting, and validation to enhance efficiency and minimize risks. Mentor junior engineers, providing technical guidance and serving as an escalation point for directory-related support queries. Participate actively in planning and executing strategic initiatives, including forest/domain redesign, legacy domain functional level modernization, hybrid cloud identity integration, and cross-platform directory solutions. Knowledge, Skills, and Abilities Deep knowledge of directory services architecture, replication, and troubleshooting with a focus on Active Directory and associated platforms. Comprehensive understanding of directory technologies and services, including Group Policy, Kerberos, trusts, and PKI. Proficient in PowerShell and automation frameworks. Experience with Azure Active Directory and hybrid identity solutions across multi-cloud settings. Adept at identity federation and modern authentication protocols like SAML, OIDC, and OAuth. Knowledgeable about multi-forest and multi-entity trust frameworks, migrations, and consolidations. Ability to balance hands-on technical execution with strategic architectural planning and standards development. Strong analytical, communication, and leadership capabilities. Able to provide strategic input while maintaining active oversight of critical directory services. Education and Experience Bachelor's degree in Computer Science, Information Systems, or a related field, or equivalent relevant experience. A minimum of 7 years of experience in directory services within large-scale, multi-entity enterprise environments. Demonstrated experience in leading directory services projects that significantly impact the enterprise, including migrations, integrations, and modernization efforts. Preferred industry certifications include MCSE, Microsoft Certified: Identity and Access Administrator Associate, Azure Solutions Architect, or other relevant Microsoft and cloud directory certifications. Job Category:
Information Security Compensation Information
: The compensation package offered to candidates considers various factors, including relevant experience, education, work location, market trends, internal equity, and salary structures. Additionally, the position may offer eligibility for annual bonuses and other incentives based on performance. Pay Type:
Salaried Minimum Pay Range:
$120,000.00 Maximum Pay Range:
$140,000.00 Benefits Information
: For all Full-time positions only:
Ryder provides comprehensive health and welfare benefits, including medical, prescription, dental, vision, life, and disability insurance options, in addition to paid time off for various reasons and a tax-advantaged 401(k) plan. Ryder is committed to being an Equal Opportunity Employer and maintaining a drug-free workplace. All qualified applicants will be considered without regard to race, religion, color, national origin, gender, sexual orientation, gender identity, age, veteran status, or disability status. Important Note: Some positions may require additional screening involving verification of employment and education, background checks, and compliance with customer requirements. Security Notice for Applicants: Ryder will only communicate with applicants from an official email address and will not conduct interviews via chat or messaging platforms. Applicants should never provide payment or banking details and should only submit personal information through the formal application process. Current Employees: If you are a current employee at Ryder, please log in to Workday to apply through the internal application process. Job Seekers can review the Job Applicant Privacy Policy.
: General Summary The Lead Directory Services Engineer plays a pivotal role in designing, engineering, and managing enterprise directory services. This crucial position merges advanced technical knowledge with strategic guidance, ensuring directory platforms remain stable, scalable, and secure across diverse environments. Candidates should possess in-depth expertise in Active Directory and related directory platforms, exceptional problem-solving skills, and a track record of leading impactful technical projects, including complex initiatives like multi-forest management, mergers and acquisitions, hybrid cloud integration, and legacy environment modernization. The engineer will act as a technical authority within the Identity and Access Management sector. Duties and Responsibilities Oversee the engineering, design, and lifecycle management of directory service platforms, including Active Directory and Azure Active Directory, across multiple environments, ensuring robust support for technologies like Sites and Services, Group Policy, and PKI. Manage multi-forest architectures and facilitate cross-entity trust relationships to guarantee smooth authentication and authorization, particularly during mergers and acquisitions, focusing on integration, migration strategies, post-migration stabilization, and thorough documentation. Lead efforts to establish technical standards, architectural roadmaps, and operational best practices for directory services, accompanied by ongoing system health assessments and capacity planning. Guide resolution of advanced issues related to authentication, replication, trusts, and integration with enterprise systems. Collaborate with networking and security teams to ensure directory services align strategically with security protocols, compliance regulations, and operational requirements. Create and maintain automation processes for provisioning, monitoring, reporting, and validation to enhance efficiency and minimize risks. Mentor junior engineers, providing technical guidance and serving as an escalation point for directory-related support queries. Participate actively in planning and executing strategic initiatives, including forest/domain redesign, legacy domain functional level modernization, hybrid cloud identity integration, and cross-platform directory solutions. Knowledge, Skills, and Abilities Deep knowledge of directory services architecture, replication, and troubleshooting with a focus on Active Directory and associated platforms. Comprehensive understanding of directory technologies and services, including Group Policy, Kerberos, trusts, and PKI. Proficient in PowerShell and automation frameworks. Experience with Azure Active Directory and hybrid identity solutions across multi-cloud settings. Adept at identity federation and modern authentication protocols like SAML, OIDC, and OAuth. Knowledgeable about multi-forest and multi-entity trust frameworks, migrations, and consolidations. Ability to balance hands-on technical execution with strategic architectural planning and standards development. Strong analytical, communication, and leadership capabilities. Able to provide strategic input while maintaining active oversight of critical directory services. Education and Experience Bachelor's degree in Computer Science, Information Systems, or a related field, or equivalent relevant experience. A minimum of 7 years of experience in directory services within large-scale, multi-entity enterprise environments. Demonstrated experience in leading directory services projects that significantly impact the enterprise, including migrations, integrations, and modernization efforts. Preferred industry certifications include MCSE, Microsoft Certified: Identity and Access Administrator Associate, Azure Solutions Architect, or other relevant Microsoft and cloud directory certifications. Job Category:
Information Security Compensation Information
: The compensation package offered to candidates considers various factors, including relevant experience, education, work location, market trends, internal equity, and salary structures. Additionally, the position may offer eligibility for annual bonuses and other incentives based on performance. Pay Type:
Salaried Minimum Pay Range:
$120,000.00 Maximum Pay Range:
$140,000.00 Benefits Information
: For all Full-time positions only:
Ryder provides comprehensive health and welfare benefits, including medical, prescription, dental, vision, life, and disability insurance options, in addition to paid time off for various reasons and a tax-advantaged 401(k) plan. Ryder is committed to being an Equal Opportunity Employer and maintaining a drug-free workplace. All qualified applicants will be considered without regard to race, religion, color, national origin, gender, sexual orientation, gender identity, age, veteran status, or disability status. Important Note: Some positions may require additional screening involving verification of employment and education, background checks, and compliance with customer requirements. Security Notice for Applicants: Ryder will only communicate with applicants from an official email address and will not conduct interviews via chat or messaging platforms. Applicants should never provide payment or banking details and should only submit personal information through the formal application process. Current Employees: If you are a current employee at Ryder, please log in to Workday to apply through the internal application process. Job Seekers can review the Job Applicant Privacy Policy.