Active Directory Remediation Engineer - Remote or Hybrid in DC or MN
About The Position
Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by diversity and inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health equity on a global scale. Join us to start Caring. Connecting. Growing together. You’ll be the go-to expert for securing our Active Directory and Azure AD ecosystems. Your mission: hunt down vulnerabilities, dismantle attack paths, and raise the bar for identity security. If you are located in DC or MN, you will have the flexibility to work remotely as you take on some tough challenges. For all hires in the Minneapolis or Washington, D.C. area, you will be required to work in the office for a minimum of four days per week. You’ll be rewarded and recognized for your performance in an environment that will challenge you and give you clear directions on what it takes to succeed in your role as well as provide development for other roles you may be interested in.
Requirements
- 5+ years of experience in AD administration/security
- 1+ years of software development experience with scripting languages such as python, PowerShell and APIs
- 1+ years of vulnerability remediation experience
Nice To Haves
- Microsoft Certified: Identity and Access Administrator Associate
- OSCP or CRTO
- CISSP
- 2+ years of hands-on experience with BloodHound (Community or Enterprise)
- Active Directory architecture, AD DS/CS, and security best practices
- BloodHound graph analysis and attack path interpretation
- Network protocols: Kerberos, LDAP, DNS
- Microsoft Entra ID (Azure AD) and hybrid environments
- Proven ability to think like an attacker, act like a defender
- Proven ability to translate technical findings into clear, actionable insights
Responsibilities
- Securing AD: Proactively identify and fix misconfigurations, excessive permissions, and vulnerabilities in hybrid AD environments
- Attack Path Hunting: Use BloodHound Enterprise to map and prioritize identity-based attack paths to Tier 0 assets. Find and eliminate high-risk choke points
- Remediation Guidance: Translate complex findings into clear, actionable steps for IT and sysadmin teams
- Security Metrics: Establish and track findings, automate scripts to create trending data and analysis of overall improvements in security posture
- Red Team Support: Assist offensive security teams with BloodHound-driven assessments
- Blue + Red Team Collaboration: Work across teams to close gaps from both offensive and defensive angles
- Tool Ownership: Manage BloodHound Enterprise, including SharpHound and AzureHound data collection
- Continuous Learning: Stay sharp on evolving AD attack techniques like Kerberoasting, DCSync, and Golden Ticket attacks
Benefits
- a comprehensive benefits package
- incentive and recognition programs
- equity stock purchase
- 401k contribution
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
Number of Employees
5,001-10,000 employees
