Advanced Network Consulting
OCTO - Senior Directory Infrastructure engineer
Advanced Network Consulting, Washington, District of Columbia, us, 20022
1 week ago Be among the first 25 applicants
The OCTO Engineering and security team is looking for a senior level Directory Infrastructure Engineer for complex projects.
The Office of the Chief Technology Officer's Security and Engineering Team manages a variety of functions including endpoint management, Active Directory, VPN, firewalls and security incident response. The team is l seeking
experienced Directory Infrastructure Engineers
with extensive expertise in enterprise identity infrastructure including Active Directory, Entra ID (formerly Azure AD), OKTA Universal Directory, and LDAP environments. The resource must have a proven track record of designing and managing complex directory services across multiple platforms with particular emphasis on the complete lifecycle management of AD domains. The ideal candidates will bring expertise in modern identity approaches including Just-In-Time access, Privileged Identity Management, and continuous validation patterns that balance security with user experience.
Key Responsibilities
Design, implement, and maintain enterprise directory services infrastructure Manage the complete lifecycle of AD domains including planning, deployment, maintenance, upgrades, and decommissioning Lead domain consolidation, migration, and forest restructuring projects Develop domain health monitoring and proactive maintenance procedures Create and execute disaster recovery plans for directory services Develop and maintain automation scripts using PowerShell for directory management tasks Interface with directory services using GraphAPI and REST API for custom integrations Implement and maintain security best practices for directory services Design and manage trust relationships between domains and forests Create and maintain documentation for directory architecture and operational procedures Provide escalation support for critical directory service incidents
Required Qualifications
5+ years of hands-on experience with enterprise directory services (Active Directory, Entra ID, OKTA Universal Directory, LDAP) Demonstrated experience with AD domain lifecycle management including domain creation, upgrades, and decommissioning Advanced PowerShell scripting skills with demonstrable experience automating directory management tasks Proven experience with Microsoft GraphAPI and REST API integration for directory management Experience with directory synchronization technologies (Azure AD Connect, OKTA integration agents, etc.) Strong understanding of identity security best practices and compliance requirements Experience with multi-forest and hybrid identity environments Ability to design and implement complex directory architecture solutions
Preferred Qualifications
Relevant certifications (Microsoft 365 Certified: Identity and Access Administrator, OKTA Professional, etc.) Experience with Terraform, Ansible, or similar IaC tools for directory infrastructure Knowledge of SAML, OAuth, OIDC, and other modern authentication protocols Experience with Group Policy design and management Expertise in domain controller sizing, placement, and performance optimization Experience with domain functional level upgrades and cross-domain migrations Familiarity with CI/CD pipelines for infrastructure automation Experience with implementing Zero Trust architecture
Requirements
experience with enterprise directory services (Active Directory, Entra ID, OKTA Universal Directory, LDAP)--Required 6 Years experience with AD domain lifecycle management including domain creation, upgrades, and decommissioning--Required 5 Years Advanced PowerShell scripting skills with demonstrable experience automating directory management tasks--Required 5 Years Proven experience with Microsoft GraphAPI and REST API integration for directory management--Required 5 Years Strong understanding of identity security best practices and compliance requirements--Required 5 Years Experience with directory synchronization technologies (Azure AD Connect, OKTA integration agents, etc.)--Required 5 Years Experience with multi-forest and hybrid identity environments--Required 5 Years Ability to design and implement complex directory architecture solutions--Required 5 Years Bachelors degree--Required Seniority level
Seniority level
Mid-Senior level Employment type
Employment type
Full-time Job function
Job function
Information Technology Industries
IT Services and IT Consulting Referrals increase your chances of interviewing at Advanced Network Consulting by 2x Senior Directory Infrastructure Engineer
Washington, DC $157,000 - $169,000 2 weeks ago Laurel, MD $120,800 - $265,800 1 month ago Bethesda, MD $110,800 - $140,200 5 months ago Annapolis Junction, MD $131,800 - $290,000 2 months ago Rockville, MD $78,536.16 - $98,170.20 1 day ago Were unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI. #J-18808-Ljbffr
The Office of the Chief Technology Officer's Security and Engineering Team manages a variety of functions including endpoint management, Active Directory, VPN, firewalls and security incident response. The team is l seeking
experienced Directory Infrastructure Engineers
with extensive expertise in enterprise identity infrastructure including Active Directory, Entra ID (formerly Azure AD), OKTA Universal Directory, and LDAP environments. The resource must have a proven track record of designing and managing complex directory services across multiple platforms with particular emphasis on the complete lifecycle management of AD domains. The ideal candidates will bring expertise in modern identity approaches including Just-In-Time access, Privileged Identity Management, and continuous validation patterns that balance security with user experience.
Key Responsibilities
Design, implement, and maintain enterprise directory services infrastructure Manage the complete lifecycle of AD domains including planning, deployment, maintenance, upgrades, and decommissioning Lead domain consolidation, migration, and forest restructuring projects Develop domain health monitoring and proactive maintenance procedures Create and execute disaster recovery plans for directory services Develop and maintain automation scripts using PowerShell for directory management tasks Interface with directory services using GraphAPI and REST API for custom integrations Implement and maintain security best practices for directory services Design and manage trust relationships between domains and forests Create and maintain documentation for directory architecture and operational procedures Provide escalation support for critical directory service incidents
Required Qualifications
5+ years of hands-on experience with enterprise directory services (Active Directory, Entra ID, OKTA Universal Directory, LDAP) Demonstrated experience with AD domain lifecycle management including domain creation, upgrades, and decommissioning Advanced PowerShell scripting skills with demonstrable experience automating directory management tasks Proven experience with Microsoft GraphAPI and REST API integration for directory management Experience with directory synchronization technologies (Azure AD Connect, OKTA integration agents, etc.) Strong understanding of identity security best practices and compliance requirements Experience with multi-forest and hybrid identity environments Ability to design and implement complex directory architecture solutions
Preferred Qualifications
Relevant certifications (Microsoft 365 Certified: Identity and Access Administrator, OKTA Professional, etc.) Experience with Terraform, Ansible, or similar IaC tools for directory infrastructure Knowledge of SAML, OAuth, OIDC, and other modern authentication protocols Experience with Group Policy design and management Expertise in domain controller sizing, placement, and performance optimization Experience with domain functional level upgrades and cross-domain migrations Familiarity with CI/CD pipelines for infrastructure automation Experience with implementing Zero Trust architecture
Requirements
experience with enterprise directory services (Active Directory, Entra ID, OKTA Universal Directory, LDAP)--Required 6 Years experience with AD domain lifecycle management including domain creation, upgrades, and decommissioning--Required 5 Years Advanced PowerShell scripting skills with demonstrable experience automating directory management tasks--Required 5 Years Proven experience with Microsoft GraphAPI and REST API integration for directory management--Required 5 Years Strong understanding of identity security best practices and compliance requirements--Required 5 Years Experience with directory synchronization technologies (Azure AD Connect, OKTA integration agents, etc.)--Required 5 Years Experience with multi-forest and hybrid identity environments--Required 5 Years Ability to design and implement complex directory architecture solutions--Required 5 Years Bachelors degree--Required Seniority level
Seniority level
Mid-Senior level Employment type
Employment type
Full-time Job function
Job function
Information Technology Industries
IT Services and IT Consulting Referrals increase your chances of interviewing at Advanced Network Consulting by 2x Senior Directory Infrastructure Engineer
Washington, DC $157,000 - $169,000 2 weeks ago Laurel, MD $120,800 - $265,800 1 month ago Bethesda, MD $110,800 - $140,200 5 months ago Annapolis Junction, MD $131,800 - $290,000 2 months ago Rockville, MD $78,536.16 - $98,170.20 1 day ago Were unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI. #J-18808-Ljbffr