RIT Solutions, Inc.
Active Directory Systems Administrators
RIT Solutions, Inc., San Francisco, California, United States, 94199
Job title:
Active Directory Specialist (Active Directory Engineer) This position is
100% remote ,
living in CST or EST time zone
( prefer Texas, Alabama, Arkansas, Oklahoma, Missouri, Mississippi, or surrounding states etc...
MUST HAVES.............
7+ years of relevant experience as n
Active Directory Specialist (Systems Admin)
Experience configuring
domain controllers AND managing
Active Directory forests Experience with
"LAPS"
( Local Admin, password, solutions ) AND
ACL's
( Access Control lists,)
troubleshoot, clean up and fix Experience
implementing Zero Trust security models in AD environments
4) Experience
extending AD schemas/raising AD forests, working in complex AD environments
5) Experience in
Banking/Financial Services industry
7+ years of relevant experience
-
Responsibilities -Work in complex, multi-domain, multi-forest environments, -Analyze and remediate Active Directory security vulnerabilities identified in a cybersecurity audit. -Implement security best practices across the AD infrastructure, ensuring compliance with banking and financial industry regulations. -Triage Active Directory domain controllers, as required, ensuring their security, redundancy, and operational efficiency. -Refactor Active Directory forests, including schema extensions and forest upgrades, as required to ensure audit compliance. -Implement and/or modify group policy updates, access controls, and role-based access models to mitigate security risks. -Enhance AD monitoring, logging, and auditing capabilities to support security and compliance efforts. -Collaborate with cybersecurity, infrastructure, and compliance teams to ensure AD security aligns with corporate policies. -Provide expertise in Active Directory Federation Services (ADFS) and related identity federation technologies. -Ensure compliance with NIST, ISO 27001, FFIEC, SOX, and other financial security frameworks, as required by client and/or audit requirements.
Required Experience - 7+ years of experience managing Active Directory (AD) environments in enterprise settings. - 2+ years experience implementing AD solutions within banking/financial services environments. -Deep expertise in
Active Directory security, architecture, and administration. -Proven experience in remediating AD security risks and implementing security controls. -Strong knowledge of domain controllers, AD forests, AD trusts, and Group Policy. -Experience with AD schema extensions, forest raises, and AD migrations. -Hands-on experience managing complex AD environments in a banking or financial services institution. -Knowledge of identity & access management (IAM) best practices in financial regulatory environments. -Familiarity with Kerberos authentication, LDAP, SAML, and similar identity protocols. -Strong understanding of PowerShell scripting for AD automation and security hardening. -Experience working within SOX, PCI-DSS, FFIEC compliance frameworks. -Microsoft Certifications (e.g., MCSE, Microsoft Certified: Identity and Access Administrator, Microsoft 365 Certified). - Knowledge of Azure Active Directory (AAD) and cloud identity integrations. - Experience implementing Zero Trust security models in AD environments.
Active Directory Specialist (Active Directory Engineer) This position is
100% remote ,
living in CST or EST time zone
( prefer Texas, Alabama, Arkansas, Oklahoma, Missouri, Mississippi, or surrounding states etc...
MUST HAVES.............
7+ years of relevant experience as n
Active Directory Specialist (Systems Admin)
Experience configuring
domain controllers AND managing
Active Directory forests Experience with
"LAPS"
( Local Admin, password, solutions ) AND
ACL's
( Access Control lists,)
troubleshoot, clean up and fix Experience
implementing Zero Trust security models in AD environments
4) Experience
extending AD schemas/raising AD forests, working in complex AD environments
5) Experience in
Banking/Financial Services industry
7+ years of relevant experience
-
Responsibilities -Work in complex, multi-domain, multi-forest environments, -Analyze and remediate Active Directory security vulnerabilities identified in a cybersecurity audit. -Implement security best practices across the AD infrastructure, ensuring compliance with banking and financial industry regulations. -Triage Active Directory domain controllers, as required, ensuring their security, redundancy, and operational efficiency. -Refactor Active Directory forests, including schema extensions and forest upgrades, as required to ensure audit compliance. -Implement and/or modify group policy updates, access controls, and role-based access models to mitigate security risks. -Enhance AD monitoring, logging, and auditing capabilities to support security and compliance efforts. -Collaborate with cybersecurity, infrastructure, and compliance teams to ensure AD security aligns with corporate policies. -Provide expertise in Active Directory Federation Services (ADFS) and related identity federation technologies. -Ensure compliance with NIST, ISO 27001, FFIEC, SOX, and other financial security frameworks, as required by client and/or audit requirements.
Required Experience - 7+ years of experience managing Active Directory (AD) environments in enterprise settings. - 2+ years experience implementing AD solutions within banking/financial services environments. -Deep expertise in
Active Directory security, architecture, and administration. -Proven experience in remediating AD security risks and implementing security controls. -Strong knowledge of domain controllers, AD forests, AD trusts, and Group Policy. -Experience with AD schema extensions, forest raises, and AD migrations. -Hands-on experience managing complex AD environments in a banking or financial services institution. -Knowledge of identity & access management (IAM) best practices in financial regulatory environments. -Familiarity with Kerberos authentication, LDAP, SAML, and similar identity protocols. -Strong understanding of PowerShell scripting for AD automation and security hardening. -Experience working within SOX, PCI-DSS, FFIEC compliance frameworks. -Microsoft Certifications (e.g., MCSE, Microsoft Certified: Identity and Access Administrator, Microsoft 365 Certified). - Knowledge of Azure Active Directory (AAD) and cloud identity integrations. - Experience implementing Zero Trust security models in AD environments.