ZipRecruiter
Job DescriptionJob Description Job Title:
Senior Directory Infrastructure Engineer (Remote) Location:
Washington, DC Duration:
12 Months+
Job Description: The client's Security and Engineering Team manages a variety of functions including endpoint management, Active Directory, VPN, firewalls and security incident response. The team is l seeking experienced Directory Infrastructure Engineers with extensive expertise in enterprise infrastructure including Active Directory, Entra ID (formerly Azure AD), OKTA Universal Directory, and LDAP environments. The resource must have a proven track record of designing and managing complex directory services across multiple platforms with particular emphasis on the complete lifecycle management of AD domains. The ideal candidates will bring expertise in modern approaches including Just-In-Time access, Privileged Management, and continuous validation patterns that balance security with user experience.
Key Responsibilities
Design, implement, and maintain enterprise directory services infrastructure
Manage the complete lifecycle of AD domains including planning, deployment, maintenance, upgrades, and decommissioning
Lead domain consolidation, migration, and forest restructuring projects
Develop domain health monitoring and proactive maintenance procedures
Create and execute disaster recovery plans for directory services
Develop and maintain automation scripts using PowerShell for directory management tasks
Interface with directory services using GraphAPI and REST API for custom integrations
Implement and maintain security best practices for directory services
Design and manage trust relationships between domains and forests
Create and maintain documentation for directory architecture and operational procedures
Provide escalation support for critical directory service incidents
Qualifications
Relevant certifications (Microsoft 365 Certified: and Access Administrator, OKTA Professional, etc.)
Experience with Terraform, Ansible, or similar IaC tools for directory infrastructure
Knowledge of SAML, OAuth, OIDC, and other modern authentication protocols
Experience with Group Policy design and management
Expertise in domain controller sizing, placement, and performance optimization
Experience with domain functional level upgrades and cross-domain migrations
Familiarity with CI/CD pipelines for infrastructure automation
Experience with implementing Zero Trust architecture
Skills: Skills
Required / Desired
Amount
of Experience Experience with enterprise directory services (Active Directory, Entra ID, OKTA Universal Directory, LDAP) Required6YearsExperience with AD domain lifecycle management including domain creation, upgrades, and decommissioningRequired5YearsAdvanced PowerShell scripting skills with demonstrable experience automating directory management tasksRequired5YearsProven experience with Microsoft GraphAPI and REST API integration for directory management Required5YearsStrong understanding of security best practices and compliance requirementsRequired5YearsExperience with directory synchronization technologies (Azure AD Connect, OKTA integration agents, etc.) Required5YearsExperience with multi-forest and hybrid environmentsRequired5YearsAbility to design and implement complex directory architecture solutionsRequired5YearsBachelor’s degreeRequired
Powered by JazzHR
veOZtIY8d2
Senior Directory Infrastructure Engineer (Remote) Location:
Washington, DC Duration:
12 Months+
Job Description: The client's Security and Engineering Team manages a variety of functions including endpoint management, Active Directory, VPN, firewalls and security incident response. The team is l seeking experienced Directory Infrastructure Engineers with extensive expertise in enterprise infrastructure including Active Directory, Entra ID (formerly Azure AD), OKTA Universal Directory, and LDAP environments. The resource must have a proven track record of designing and managing complex directory services across multiple platforms with particular emphasis on the complete lifecycle management of AD domains. The ideal candidates will bring expertise in modern approaches including Just-In-Time access, Privileged Management, and continuous validation patterns that balance security with user experience.
Key Responsibilities
Design, implement, and maintain enterprise directory services infrastructure
Manage the complete lifecycle of AD domains including planning, deployment, maintenance, upgrades, and decommissioning
Lead domain consolidation, migration, and forest restructuring projects
Develop domain health monitoring and proactive maintenance procedures
Create and execute disaster recovery plans for directory services
Develop and maintain automation scripts using PowerShell for directory management tasks
Interface with directory services using GraphAPI and REST API for custom integrations
Implement and maintain security best practices for directory services
Design and manage trust relationships between domains and forests
Create and maintain documentation for directory architecture and operational procedures
Provide escalation support for critical directory service incidents
Qualifications
Relevant certifications (Microsoft 365 Certified: and Access Administrator, OKTA Professional, etc.)
Experience with Terraform, Ansible, or similar IaC tools for directory infrastructure
Knowledge of SAML, OAuth, OIDC, and other modern authentication protocols
Experience with Group Policy design and management
Expertise in domain controller sizing, placement, and performance optimization
Experience with domain functional level upgrades and cross-domain migrations
Familiarity with CI/CD pipelines for infrastructure automation
Experience with implementing Zero Trust architecture
Skills: Skills
Required / Desired
Amount
of Experience Experience with enterprise directory services (Active Directory, Entra ID, OKTA Universal Directory, LDAP) Required6YearsExperience with AD domain lifecycle management including domain creation, upgrades, and decommissioningRequired5YearsAdvanced PowerShell scripting skills with demonstrable experience automating directory management tasksRequired5YearsProven experience with Microsoft GraphAPI and REST API integration for directory management Required5YearsStrong understanding of security best practices and compliance requirementsRequired5YearsExperience with directory synchronization technologies (Azure AD Connect, OKTA integration agents, etc.) Required5YearsExperience with multi-forest and hybrid environmentsRequired5YearsAbility to design and implement complex directory architecture solutionsRequired5YearsBachelor’s degreeRequired
Powered by JazzHR
veOZtIY8d2