We are seeking an experienced Active Directory (AD) Engineer to design build and operate core Microsoft Active Directory infrastructure with a strong focus on isolated forests segregated domains and securitydriven directory architectures. This role is critical to enabling secure authentication legacy containment privilege isolation and enterprise identity engineer will own the lifecycle of AD forests and domains partner with security and platform teams and ensure directory services meet availability security and compliance requirements.
Key Responsibilities
Active Directory Architecture & Engineering
Design build and maintain Active Directory forests trees and domains including additional and isolated forestsfor security or regulatory purposes
Implement resource forests containment forests and hardened domainsfor legacy protocols privileged access or application isolation
Design and manage interforest and intraforest trusts(oneway twoway selective authentication)
Plan and execute domain controller placement site topology and replication strategy
Core AD Administration
Deploy patch and maintain Domain Controllers(Windows Server)
Manage FSMO roles time synchronization DNS integration and SYSVOL
Administer Group Policy Objects (GPOs)for security baselines and configuration management
Manage AD objects: users groups computers service accounts and delegation models
Security & Hardening
Enforce Active Directory security best practicesand tiered administration models
Build privilege isolation domainsfor admin accounts and privileged workloads
Service account governance and gMSA implementation
AD attack surface reduction (lateral movement prevention tiering)
Partner with security teams during incidents audits and risk remediation efforts
Migration & Transformation
Lead or support:
Domain and forest builds and decompositions
Application and server migrations between domains or forests
Legacy domain containment and modernization efforts
Coordinate with application server and IAM teams to minimize disruption
Monitoring Troubleshooting & Operations
Diagnose and resolve:
Replication failures
Authentication and trust issues
DNS and Kerberosrelated problems
Maintain AD health using monitoring tools and best practices
Create and maintain operational runbooks and SOPs
Experience
5-8 yearsof handson Active Directory engineering and administration experience
Proven experience building new forests and domains including isolated or segmented environments
Deep understanding of AD internalsand authentication mechanisms
Technical Expertise
Strong knowledge of:
Active Directory Domain Services (AD DS)
DNS Kerberos LDAP NTLM
Forest/domain trusts and authentication boundaries.
If you are excited to grab this opportunity please apply directly or share your CV atand
Greetings from Maneva! Job Description Job Title - Active Directory Engineer Experience - 9 - 15 Years Location - PAN India Notice - Immediate to 30 days Requirements:- We are seeking an experienced Active Directory (AD) Engineer to design build and operate core Microsoft Active Directory infrastr...
Greetings from Maneva!
Job Description
Job Title - Active Directory Engineer
Experience - 9 - 15 Years
Location - PAN India
Notice - Immediate to 30 days
Requirements:-
We are seeking an experienced Active Directory (AD) Engineer to design build and operate core Microsoft Active Directory infrastructure with a strong focus on isolated forests segregated domains and securitydriven directory architectures. This role is critical to enabling secure authentication legacy containment privilege isolation and enterprise identity engineer will own the lifecycle of AD forests and domains partner with security and platform teams and ensure directory services meet availability security and compliance requirements.
Key Responsibilities
Active Directory Architecture & Engineering
Design build and maintain Active Directory forests trees and domains including additional and isolated forestsfor security or regulatory purposes
Implement resource forests containment forests and hardened domainsfor legacy protocols privileged access or application isolation
Design and manage interforest and intraforest trusts(oneway twoway selective authentication)
Plan and execute domain controller placement site topology and replication strategy
Core AD Administration
Deploy patch and maintain Domain Controllers(Windows Server)
Manage FSMO roles time synchronization DNS integration and SYSVOL
Administer Group Policy Objects (GPOs)for security baselines and configuration management
Manage AD objects: users groups computers service accounts and delegation models
Security & Hardening
Enforce Active Directory security best practicesand tiered administration models
Build privilege isolation domainsfor admin accounts and privileged workloads