State of Washington
Overview
Senior IT Systems Administrator | Active Directory and Entra ID Full Time | Permanent Salary Range: $92,760 - $124,752 Annually This is a telework/hybrid position. The candidate of choice may work from anywhere within the state of Washington with a reliable internet connection. Travel may be required. The Washington State Department of Corrections (DOC) is seeking a highly skilled and experienced
Senior IT Systems Administrator
with a strong background in
Microsoft Active Directory
and
Azure Entra ID . In this role, you will be responsible for ensuring the security, performance, and reliability of the department’s enterprise identity systems, which support essential operations across all DOC facilities statewide. Responsibilities
Provide enterprise technical oversight of Active Directory (AD) architecture across on-premises, cloud and hybrid environments, including design, deployment, administration, and support to ensure security, scalability, and compliance. Administer multiple hybrid enterprise domains and oversee internal DNS/DHCP architectures. Engineer and support Windows technologies related to AD (Forests, Domains, Trusts, SAML, OAuth2, OpenID Connect, SSO, DNS, DHCP, Certificates, Kerberos, FSMO roles, LDAPs, OUs, Group Policy). Design and implement disaster recovery strategies for AD and collaborate with IT teams, business units, and external partners to ensure secure, reliable identity services. Monitor health and status of domain controllers at site and forest levels; perform root cause analysis to resolve complex AD issues. Utilize the agency’s incident ticketing system to manage and fulfill work requests. Provide enterprise technical oversight of Azure Entra ID and Identity Management services, including SSO, MFA, conditional access, and cloud governance. Administer Azure subscriptions, RBAC, custom roles, and resource groups to support governance and access control; design identity management and directory synchronization for Microsoft 365 initiatives. Develop documentation for Active Directory/Azure Entra ID implementations and related activities to ensure compliance and knowledge sharing. Support scripting for automation and integration across on-premises, cloud, and hybrid environments; leverage PowerShell and other scripting tools as needed. Qualifications
Required qualifications: A minimum of four years of progressively responsible IT experience involving consulting, analysis, scripting, installation, and/or maintenance of computer applications; OR a bachelor’s degree in computer science or a related field from an accredited institution (or equivalent foreign degree). Four years of directly related experience in enterprise system domain engineering. Four years of Microsoft Directory Services experience within the last six years, focusing on designing, managing, and administering an enterprise-level directory service environment. Four years of technical experience administering Microsoft Windows Server 2019 or newer and Microsoft Windows 11 or newer in a professional environment. Preferred qualifications: Four or more years of enterprise-level experience with Microsoft and cloud technologies (Active Directory, Azure Entra ID, hybrid IAM, virtualization, Windows 11, Microsoft 365, and workstation hardening). Experience with IPsec, DNS, DHCP, modern authentication protocols (Kerberos, SAML, OAuth2, OpenID Connect), Azure Entra ID, digital certificates, Exchange Online, and Windows Server 2019 or newer. Two or more years of scripting experience (PowerShell, Python, Azure CLI) to automate tasks. Microsoft certifications related to Windows Server, Azure, Identity, and Microsoft 365 are desirable. Supplemental Information
Vision:
Working together for safer communities. Mission:
Improving public safety by positively changing lives. Our Commitment:
To operate a safe and humane corrections system and partner with others to transform lives for a better Washington. Equal Opportunity:
DOC is an equal opportunity employer and does not discriminate on the basis of race, creed, color, national origin, sex, marital status, sexual orientation, gender identity, gender expression, age, veteran status, disability or other protected status. Notes:
This recruitment may be used to fill more than one position. A background check will be conducted. Pre-employment drug testing may be required. Telework details, benefits, and additional notes are described in the posting. Telework Details:
This position may be allocated for telework. Work may be performed from home or another offsite location within Washington. Occasional travel to DOC facilities may be required. What We Offer:
Washington State offers an inclusive benefits package including health insurance, retirement options, paid leave, and other programs. See the posting for full details. For questions or accommodations in the application process, please contact the DOC recruiting team.
#J-18808-Ljbffr
Senior IT Systems Administrator | Active Directory and Entra ID Full Time | Permanent Salary Range: $92,760 - $124,752 Annually This is a telework/hybrid position. The candidate of choice may work from anywhere within the state of Washington with a reliable internet connection. Travel may be required. The Washington State Department of Corrections (DOC) is seeking a highly skilled and experienced
Senior IT Systems Administrator
with a strong background in
Microsoft Active Directory
and
Azure Entra ID . In this role, you will be responsible for ensuring the security, performance, and reliability of the department’s enterprise identity systems, which support essential operations across all DOC facilities statewide. Responsibilities
Provide enterprise technical oversight of Active Directory (AD) architecture across on-premises, cloud and hybrid environments, including design, deployment, administration, and support to ensure security, scalability, and compliance. Administer multiple hybrid enterprise domains and oversee internal DNS/DHCP architectures. Engineer and support Windows technologies related to AD (Forests, Domains, Trusts, SAML, OAuth2, OpenID Connect, SSO, DNS, DHCP, Certificates, Kerberos, FSMO roles, LDAPs, OUs, Group Policy). Design and implement disaster recovery strategies for AD and collaborate with IT teams, business units, and external partners to ensure secure, reliable identity services. Monitor health and status of domain controllers at site and forest levels; perform root cause analysis to resolve complex AD issues. Utilize the agency’s incident ticketing system to manage and fulfill work requests. Provide enterprise technical oversight of Azure Entra ID and Identity Management services, including SSO, MFA, conditional access, and cloud governance. Administer Azure subscriptions, RBAC, custom roles, and resource groups to support governance and access control; design identity management and directory synchronization for Microsoft 365 initiatives. Develop documentation for Active Directory/Azure Entra ID implementations and related activities to ensure compliance and knowledge sharing. Support scripting for automation and integration across on-premises, cloud, and hybrid environments; leverage PowerShell and other scripting tools as needed. Qualifications
Required qualifications: A minimum of four years of progressively responsible IT experience involving consulting, analysis, scripting, installation, and/or maintenance of computer applications; OR a bachelor’s degree in computer science or a related field from an accredited institution (or equivalent foreign degree). Four years of directly related experience in enterprise system domain engineering. Four years of Microsoft Directory Services experience within the last six years, focusing on designing, managing, and administering an enterprise-level directory service environment. Four years of technical experience administering Microsoft Windows Server 2019 or newer and Microsoft Windows 11 or newer in a professional environment. Preferred qualifications: Four or more years of enterprise-level experience with Microsoft and cloud technologies (Active Directory, Azure Entra ID, hybrid IAM, virtualization, Windows 11, Microsoft 365, and workstation hardening). Experience with IPsec, DNS, DHCP, modern authentication protocols (Kerberos, SAML, OAuth2, OpenID Connect), Azure Entra ID, digital certificates, Exchange Online, and Windows Server 2019 or newer. Two or more years of scripting experience (PowerShell, Python, Azure CLI) to automate tasks. Microsoft certifications related to Windows Server, Azure, Identity, and Microsoft 365 are desirable. Supplemental Information
Vision:
Working together for safer communities. Mission:
Improving public safety by positively changing lives. Our Commitment:
To operate a safe and humane corrections system and partner with others to transform lives for a better Washington. Equal Opportunity:
DOC is an equal opportunity employer and does not discriminate on the basis of race, creed, color, national origin, sex, marital status, sexual orientation, gender identity, gender expression, age, veteran status, disability or other protected status. Notes:
This recruitment may be used to fill more than one position. A background check will be conducted. Pre-employment drug testing may be required. Telework details, benefits, and additional notes are described in the posting. Telework Details:
This position may be allocated for telework. Work may be performed from home or another offsite location within Washington. Occasional travel to DOC facilities may be required. What We Offer:
Washington State offers an inclusive benefits package including health insurance, retirement options, paid leave, and other programs. See the posting for full details. For questions or accommodations in the application process, please contact the DOC recruiting team.
#J-18808-Ljbffr