- Design implement and maintain Active Directory infrastructure across multi domain and multi forest environments
- Lead migration consolidation and modernization projects involving Active Directory and Azure Active Directory
- Manage and optimize Group Policies Organizational Units OUs permissions and access controls
- Troubleshoot and resolve complex AD issues such as replication failures authentication problems DNS related issues and performance bottlenecks
- Integrate on prem AD with Azure AD Office 365 and various third party identity providers
- Implement and maintain identity security best practices including auditing privileged access management RBAC and hardening controls
- Work closely with security teams to ensure identity governance compliance and alignment with regulatory standards
- Automate routine identity and infrastructure tasks using PowerShell scripting and other automation frameworks
- Monitor analyze and improve the performance and health of AD ADFS and related identity components
- Support and manage DNS DHCP DFS Certificate Services and other Windows Server roles
- Contribute to and maintain documentation including architecture diagrams standard operating procedures and troubleshooting guides
- Provide technical leadership training and mentoring to junior team members
- Participate in incident response and root cause analysis for identity related issues
- Ensure reliable operation of SSO MFA and identity lifecycle management processes
- 7 years of hands on experience with Active Directory administration architecture
- Strong expertise in multi domain multi forest AD environments
- Experience with Azure AD hybrid identity and ADFS LDAP Kerberos SAML
- Proficiency in Group Policies GPO OU design and access control
- Solid troubleshooting skills for replication authentication DNS issues
- Strong knowledge of Windows Server 2012 2016 2019 2022
- Experience with DNS DHCP DFS Certificate Services
- PowerShell scripting for automation and reporting
Technology->Application Security->Access Management,Technology->Access Management->Desktop/Federated/Web based SSO, Kerberos, SAML,Technology->Enterprise Mobility Solution->MS Azure AD, MS Azure RMS, MS Intune,Technology->Infrastructure-Server Administration->Active Directory,Technology->Universal Windows Platform->Universal Windows Platform
