Ahu Technologies
Senior Directory Infrastructure engineer
Ahu Technologies, Washington, District of Columbia, us, 20022
Job Description: Short Description
The Client Engineering and security team is looking for a senior level Directory Infrastructure Engineer for complex projects.
Complete Description The Clients Security and Engineering Team manages a variety of functions including endpoint management, Active Directory, VPN, firewalls and security incident response. The team is looking for experienced Directory Infrastructure Engineers with extensive expertise in enterprise identity infrastructure including Active Directory, Entra ID (formerly Azure AD), OKTA Universal Directory, and LDAP environments. The resource must have a proven track record of designing and managing complex directory services across multiple platforms with particular emphasis on the complete lifecycle management of AD domains. The ideal candidates will bring expertise in modern identity approaches including Just-In-Time access, Privileged Identity Management, and continuous validation patterns that balance security with user experience.
Key Responsibilities
Design, implement, and maintain enterprise directory services infrastructure
Manage the complete lifecycle of AD domains including planning, deployment, maintenance, upgrades, and decommissioning
Lead domain consolidation, migration, and forest restructuring projects
Develop domain health monitoring and proactive maintenance procedures
Create and execute disaster recovery plans for directory services
Develop and maintain automation scripts using PowerShell for directory management tasks
Interface with directory services using GraphAPI and REST API for custom integrations
Implement and maintain security best practices for directory services
Design and manage trust relationships between domains and forests
Create and maintain documentation for directory architecture and operational procedures
Provide escalation support for critical directory service incidents
Required Qualifications
5+ years of hands-on experience with enterprise directory services (Active Directory, Entra ID, OKTA Universal Directory, LDAP)
Demonstrated experience with AD domain lifecycle management including domain creation, upgrades, and decommissioning
Advanced PowerShell scripting skills with demonstrable experience automating directory management tasks
Proven experience with Microsoft GraphAPI and REST API integration for directory management
Experience with directory synchronization technologies (Azure AD Connect, OKTA integration agents, etc.)
Strong understanding of identity security best practices and compliance requirements
Experience with multi-forest and hybrid identity environments
Ability to design and implement complex directory architecture solutions
Preferred Qualifications
Relevant certifications (Microsoft 365 Certified : Identity and Access Administrator, OKTA Professional, etc.)
Experience with Terraform, Ansible, or similar IaC tools for directory infrastructure
Knowledge of SAML, OAuth, OIDC, and other modern authentication protocols
Experience with Group Policy design and management
Expertise in domain controller sizing, placement, and performance optimization
Experience with domain functional level upgrades and cross-domain migrations
Familiarity with CI / CD pipelines for infrastructure automation
Experience with implementing Zero Trust architecture
Skills
Experience with enterprise directory services (Active Directory, Entra ID, OKTA Universal Directory, LDAP). Required 6 Years
Experience with AD domain lifecycle management including domain creation, upgrades, and decommissioning. Required 5 Years
Advanced PowerShell scripting skills with demonstrable experience automating directory management tasks. Required 5 Years
Proven experience with Microsoft GraphAPI and REST API integration for directory management. Required 5 Years
Strong understanding of identity security best practices and compliance requirements. Required 5 Years
Experience with directory synchronization technologies (Azure AD Connect, OKTA integration agents, etc.). Required 5 Years
Experience with multi-forest and hybrid identity environments. Required 5 Years
Ability to design and implement complex directory architecture solutions. Required 5 Years
Bachelor’s degree. Required
Compensation $94.00 - $105.00 per hour
About Us AHU Technologies INC. is an IT consulting and permanent staffing firm that meets and exceeds the evolving IT service needs of leading corporations within the United States. We have been providing IT solutions to customers from different industry sectors, helping them control costs and release internal resources to focus on strategic issues.
AHU Technologies INC. was co-founded by visionary young techno-commercial entrepreneurs who remain as our principal consultants. Maintaining working relationships with a cadre of other highly skilled independent consultants, we have a growing number of resources available for development projects. We are currently working on various projects such as media entertainment, ERP solutions, data warehousing, web applications, telecommunications and medical to our clients all over the world.
#J-18808-Ljbffr
Complete Description The Clients Security and Engineering Team manages a variety of functions including endpoint management, Active Directory, VPN, firewalls and security incident response. The team is looking for experienced Directory Infrastructure Engineers with extensive expertise in enterprise identity infrastructure including Active Directory, Entra ID (formerly Azure AD), OKTA Universal Directory, and LDAP environments. The resource must have a proven track record of designing and managing complex directory services across multiple platforms with particular emphasis on the complete lifecycle management of AD domains. The ideal candidates will bring expertise in modern identity approaches including Just-In-Time access, Privileged Identity Management, and continuous validation patterns that balance security with user experience.
Key Responsibilities
Design, implement, and maintain enterprise directory services infrastructure
Manage the complete lifecycle of AD domains including planning, deployment, maintenance, upgrades, and decommissioning
Lead domain consolidation, migration, and forest restructuring projects
Develop domain health monitoring and proactive maintenance procedures
Create and execute disaster recovery plans for directory services
Develop and maintain automation scripts using PowerShell for directory management tasks
Interface with directory services using GraphAPI and REST API for custom integrations
Implement and maintain security best practices for directory services
Design and manage trust relationships between domains and forests
Create and maintain documentation for directory architecture and operational procedures
Provide escalation support for critical directory service incidents
Required Qualifications
5+ years of hands-on experience with enterprise directory services (Active Directory, Entra ID, OKTA Universal Directory, LDAP)
Demonstrated experience with AD domain lifecycle management including domain creation, upgrades, and decommissioning
Advanced PowerShell scripting skills with demonstrable experience automating directory management tasks
Proven experience with Microsoft GraphAPI and REST API integration for directory management
Experience with directory synchronization technologies (Azure AD Connect, OKTA integration agents, etc.)
Strong understanding of identity security best practices and compliance requirements
Experience with multi-forest and hybrid identity environments
Ability to design and implement complex directory architecture solutions
Preferred Qualifications
Relevant certifications (Microsoft 365 Certified : Identity and Access Administrator, OKTA Professional, etc.)
Experience with Terraform, Ansible, or similar IaC tools for directory infrastructure
Knowledge of SAML, OAuth, OIDC, and other modern authentication protocols
Experience with Group Policy design and management
Expertise in domain controller sizing, placement, and performance optimization
Experience with domain functional level upgrades and cross-domain migrations
Familiarity with CI / CD pipelines for infrastructure automation
Experience with implementing Zero Trust architecture
Skills
Experience with enterprise directory services (Active Directory, Entra ID, OKTA Universal Directory, LDAP). Required 6 Years
Experience with AD domain lifecycle management including domain creation, upgrades, and decommissioning. Required 5 Years
Advanced PowerShell scripting skills with demonstrable experience automating directory management tasks. Required 5 Years
Proven experience with Microsoft GraphAPI and REST API integration for directory management. Required 5 Years
Strong understanding of identity security best practices and compliance requirements. Required 5 Years
Experience with directory synchronization technologies (Azure AD Connect, OKTA integration agents, etc.). Required 5 Years
Experience with multi-forest and hybrid identity environments. Required 5 Years
Ability to design and implement complex directory architecture solutions. Required 5 Years
Bachelor’s degree. Required
Compensation $94.00 - $105.00 per hour
About Us AHU Technologies INC. is an IT consulting and permanent staffing firm that meets and exceeds the evolving IT service needs of leading corporations within the United States. We have been providing IT solutions to customers from different industry sectors, helping them control costs and release internal resources to focus on strategic issues.
AHU Technologies INC. was co-founded by visionary young techno-commercial entrepreneurs who remain as our principal consultants. Maintaining working relationships with a cadre of other highly skilled independent consultants, we have a growing number of resources available for development projects. We are currently working on various projects such as media entertainment, ERP solutions, data warehousing, web applications, telecommunications and medical to our clients all over the world.
#J-18808-Ljbffr