Active Directory Engineer (Technology Specialist I) - Digital and Technology Partners

Mount Sinai Health System•New York, NY

7d•Remote

About The Position

This is a 100% remote position, which requires one day onsite yearly. The role serves as the hands-on technical lead and subject matter expert for Entra ID and Active Directory environments and related technologies. The position involves establishing and operating a centralized Entra ID and Active Directory support function, leading incident response, and partnering with IAM, Security, Infrastructure, and Compliance teams. The engineer will act as an escalation point for directory/domain issues, perform root cause analysis, and provide SME advisory for directory and identity platforms. Analysis of the environment and driving continuous improvement plans, along with managing stakeholder expectations through clear technical communication, are key aspects of the role. Responsibilities also include administering Microsoft Entra ID (Azure AD) tenants, supporting SSO, administering on-premises Active Directory forests and domains, supporting hybrid identity configurations, and providing platform support for directory-dependent enterprise applications. This includes AD Windows Server functional support (GPO, DNS, DFS, PKI, ADFS), installation, configuration, and troubleshooting of AD, Entra ID, Azure AD DS, and directory-level backup and disaster recovery support. The role also focuses on automating Entra ID/AD operational tasks using Microsoft Graph and PowerShell, and improving directory hygiene through automated validation, monitoring, and actionable operational insights.

Requirements

Bachelor degree in Computer Science or a related discipline, or an equivalent combination of education and work experience.
Eight years of diverse work experience in IT with a minimum of six years experience in systems analysis and application program development, or an equivalent combination of education and work experience.
8+ years of Active Directory experience in enterprise environments
5+ years administering Microsoft Entra ID (Azure AD)
Strong knowledge of Azure conditional policies, App registrations and Enterprise applications
Strong proficiency in PowerShell, Microsoft Graph or equivalent Microsoft‑supported scripting and automation tooling used for Entra ID and Active Directory operations.

Nice To Haves

Masters degree preferred.

Responsibilities

Serve as the hands-on technical lead and subject matter expert for Entra ID and Active Directory environments and related technologies
Establish and operate a centralized Entra ID and Active Directory support function, including support models, standards, and escalation processes
Lead incident response, root-cause analysis, and long-term remediation for directory-related issues
Partner with IAM, Security, Infrastructure, and Compliance teams while maintaining clear ownership boundaries
Acting as escalation point for directory/domain issues
Root Cause Analysis and Problem Management
SME advisory posture for directory and identity platforms
Analyzing the environment and driving continuous improvement plans
Managing stakeholder expectations through clear technical communication
Administer Microsoft Entra ID (Azure AD) tenants
Support SSO across multiple environments, including migration & implementation
Administer on-premises Active Directory forests and domains
Support hybrid identity configurations such as Entra Connect
Support directory-dependent enterprise applications from a platform perspective
AD Windows Server functional support (GPO, DNS, DFS, PKI, ADFS)
Installation, configuration, and troubleshooting of AD, Entra ID, Azure AD DS
Directory‑level backup and disaster recovery support
Automate Entra ID/AD operational tasks using Microsoft Graph and PowerShell to reduce manual work and improve consistency
Improve directory hygiene through automated validation, monitoring, and actionable operational insights