Active Directory Systems Administrators

Job title: Active Directory Specialist (Active Directory Engineer)

This position is 100% remote, living in CST or EST time zone (prefer Texas, Alabama, Arkansas, Oklahoma, Missouri, Mississippi, or surrounding states etc...

MUST HAVES.............

7+ years of relevant experience as n Active Directory Specialist (Systems Admin)

• Experience configuring domain controllersAND managing Active Directory forests
• Experience with "LAPS" (Local Admin, password, solutions) AND ACL's ( Access Control lists,) troubleshoot, clean up and fix
• Experience implementing Zero Trust security models in AD environments

4) Experience extending AD schemas/raising AD forests, working in complex AD environments

5) Experience in Banking/Financial Services industry

7+ years of relevant experience

• Responsibilities

-Work in complex, multi-domain, multi-forest environments,

-Analyze and remediate Active Directory security vulnerabilities identified in a cybersecurity audit.

-Implement security best practices across the AD infrastructure, ensuring compliance with banking and financial industry regulations.

-Triage Active Directory domain controllers, as required, ensuring their security, redundancy, and operational efficiency.

-Refactor Active Directory forests, including schema extensions and forest upgrades, as required to ensure audit compliance.

-Implement and/or modify group policy updates, access controls, and role-based access models to mitigate security risks.

-Enhance AD monitoring, logging, and auditing capabilities to support security and compliance efforts.

-Collaborate with cybersecurity, infrastructure, and compliance teams to ensure AD security aligns with corporate policies.

-Provide expertise in Active Directory Federation Services (ADFS) and related identity federation technologies.

-Ensure compliance with NIST, ISO 27001, FFIEC, SOX, and other financial security frameworks, as required by client and/or audit requirements.

Required Experience

-7+ years of experience managing Active Directory (AD) environments in enterprise settings.

-2+ years experience implementing AD solutions within banking/financial services environments.

-Deep expertise in Active Directory security, architecture, and administration.

-Proven experience in remediating AD security risks and implementing security controls.

-Strong knowledge of domain controllers, AD forests, AD trusts, and Group Policy.

-Experience with AD schema extensions, forest raises, and AD migrations.

-Hands-on experience managing complex AD environments in a banking or financial services institution.

-Knowledge of identity & access management (IAM) best practices in financial regulatory environments.

-Familiarity with Kerberos authentication, LDAP, SAML, and similar identity protocols.

-Strong understanding of PowerShell scripting for AD automation and security hardening.

-Experience working within SOX, PCI-DSS, FFIEC compliance frameworks.

-Microsoft Certifications (e.g., MCSE, Microsoft Certified: Identity and Access Administrator, Microsoft 365 Certified).

-Knowledge of Azure Active Directory (AAD) and cloud identity integrations.

-Experience implementing Zero Trust security models in AD environments.