Principal Systems Engineer (Microsoft Active Directory Domains)

About The Position

Requirements

• Bachelor’s degree, or equivalent work experience
• At least 7 years of experience within a total information technology (IT) environment
• At least 7 years of experience with the design, development and support of technology infrastructure

Nice To Haves

• Experience designing and supporting complex enterprise infrastructure environments.
• Strong experience with automation and scripting or programming languages (e.g. PowerShell, Python, Go, Bash).
• Experience applying software development practices to infrastructure (CI/CD, Git, testing pipelines).
• Software & Automation : Experience with Infrastructure as Code (Terraform, Ansible, etc.).
• Experience building automation services or internal tools.
• Familiarity with REST APIs and service integration patterns.
• CI/CD tools: GitLab CI, Jenkins, Azure DevOps, GitHub, etc.
• Cloud & Platform Engineering: Experience in Azure or AWS (Identity, networking, compute, IAM, platform services).
• Knowledge of Kubernetes, containers, or modern platform services.
• Familiarity with service meshes or API gateways.
• Identity & Security Engineering: Deep experience with Active Directory, LDAP, Kerberos, Azure AD / Entra, IAM concepts.
• Experience with SSO, MFA, identity federation, and modern authentication models (OIDC, OAuth).
• Understanding of Zero Trust, PKI, and enterprise security practices.
• Infrastructure & Networking: Strong understanding of networking fundamentals (DNS, TCP/IP, load balancing, firewalls).
• Experience with HA/DR design, resilience engineering, and disaster recovery planning.

Responsibilities

• Manages large Microsoft Active Directory Domains.
• Defines and implements schema requirements.
• Manages Active Directory Group Policy Objects.
• Installs and upgrades directory server products.
• Evaluates and provides recommendations of current directories for capacity, network, security and disaster recovery.
• Performs backup and recovery procedures for the directories.
• Maintains support and design documentation.
• Provides technical support to other support personnel and end users.
• Provides rotating 24x7 on-call group support, responds to incidents.
• Participates in incident problem resolution root cause efforts.
• Participates in Audits and Disaster Recover exercises.
• Collaborates with Project Manages, System Integrators to provide project support.
• Works with Information Security personal.
• Understands Change Management procedures.

Benefits

• Healthcare (medical, dental, vision)
• Basic term and optional term life insurance
• Short-term and long-term disability
• Pregnancy disability and parental leave
• 401(k) and employer-funded retirement plan
• Paid vacation (from two to five weeks depending on salary grade and tenure)
• Up to 11 paid holiday opportunities
• Adoption assistance
• Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law