Active Directory L3 Architect

About The Position

Requirements

• Active Directory (On-Prem)
• AD replication troubleshooting, schema updates, GPO management.
• DNS/DHCP provisioning and trust relationships.
• Azure AD
• Enterprise app registration, SSO configuration, certificate updates.
• Conditional Access, MFA, and identity lifecycle management.
• ADFS
• Federation setup, DR planning, certificate management.
• Automation
• PowerShell scripting for AD/AAD tasks.
• Experience with Microsoft Graph API for automation.
• Strong analytical and problem-solving skills.
• Excellent communication and stakeh older management.
• Ability to work in Agile environments and lead technical initiatives.
• Strategic thinking and business acumen.
• Experience: Minimum 8-10 years in AD/AAD engineering and architecture.

Nice To Haves

• Certifications: Microsoft Certified: Azure Administrator Associate or Azure Solutions Architect Expert preferred.
• Domain Knowledge: Retail or enterprise IT environments is a plus.

Responsibilities

• Define and manage technical standards for Active Directory and Azure AD.
• Design and implement secure, scalable identity solutions for hybrid environments.
• Develop IAM policies, standards, and procedures aligned with compliance requirements.
• Handle Level 3 (L3) activities: critical incident resolution, change management, and complex troubleshooting.
• Maintain and optimize AD infrastructure (DNS, GPOs, replication, FSMO roles).
• Monitor Azure AD Connect Health portal for sync alerts and performance analytics.
• Configure and troubleshoot Azure AD Connect, synchronization policies, and staging servers.
• Implement SSO integrations using OAuth, OIDC, and SAML.
• Develop advanced PowerShell scripts and Graph API integrations for automation.
• Implement MFA, Conditional Access, and Privileged Identity Management (PIM).
• Ensure compliance through periodic audits and reporting.
• Manage disaster recovery planning for AADC and ADFS environments.
• Act as a trusted advisor for stakeholders and lead technical governance meetings.
• Provide knowledge transfer and mentoring to junior engineers.
• Participate in service reviews and strategic planning for IAM services.

Benefits

• Discretionary Annual Incentive.
• Comprehensive Medical Coverage: Medical & Health, Dental & Vision, Disability Planning & Insurance, Pet Insurance Plans.
• Family Support: Maternal & Parental Leaves.
• Insurance Options: Auto & Home Insurance, Identity Theft Protection.
• Convenience & Professional Growth: Commuter Benefits & Certification & Training Reimbursement.
• Time Off: Vacation, Time Off, Sick Leave & Holidays.
• Legal & Financial Assistance: Legal Assistance, 401K Plan, Performance Bonus, College Fund, Student Loan Refinancing.