Skip to content


South San Francisco, California Full Time Posted: Friday, 19 May 2017
Applicants must be eligible to work in the specified location

*Local Northern CA Candidates ONLY; No Relocation Available*

W2 ONLY 9 Month Contract

Our client is seeking a very senior Active Directory Services Engineer to help architect, design, secure, and support a large-scale Active Directory and related identity and access management services infrastructure.

The candidate will provide deep technical and problem solving expertise to architect, design, implement and secure Microsoft Active Directory and Active Directory Bridge service.

Centrify with a focus on schema design, security controls, authentication and authorization technologies for windows and unix platforms (including certificate based authentication).

A successful candidate will demonstrate in-depth knowledge of the inner workings of Microsoft directory services technologies, DNS, and group policies, as well as experience with Microsoft cloud services (eg, Azure AD, Office 365) and integrations.

  • Work directly with the Technical Lead, consulting on architecting and engineering solutions for Directory Services.
  • Provide sound analysis for global Active Directory design, migrations
  • Set up Domain Controllers and optimize Active Directory (AD) replication via sites and services over multiple WAN links.
  • Support Office 365 tenant and integrations using Active Directory Federation Services 3.0, Azure Active Directory Connect, and PowerShell.
  • Configure and support automated monitoring and alerting of Active Directory (AD) for health and uptime for multiple services and replication
  • Secure Active Directory objects using ACL' s, group policies and permissioning and also other applicable security controls
  • Document standards and guiding principles for AD & related infrastructure.
  • Demonstrate ability to prioritize and to deliver multiple projects on time.
  • Participate in the creation and ongoing maintenance of Architecture & Design documentation ensuring that clear, concise and accurate information is readily available.
  • Design & Implement Group Policies


  • BS/BA degree and 6+ years of relevant experience, or equivalent combination of education and experience
  • Expert level Experience supporting a large scale MS Active Directory 2008 or 2012 infrastructure (to include experience such as architecture, design, implementation, maintenance, and migration, etc.)
  • Expert Level Experience with Centrify DirectControl - Active Directory Bridge and integrating unix platforms with Centrify.
  • Expert Level Experience architecting, implementing, troubleshooting and documenting Active Directory Federated Services 3.0 (ADFS), Azure AD Connect, and Office 365.
  • Experience authoring custom ADFS claim rules.
  • In-depth knowledge of the inner workings of Microsoft Directory Services technologies.
  • Experience supporting large scale DNS infrastructure
  • Strong understanding of multi-factor authentication,
  • Experience creating and troubleshooting Group Policies
  • Experience coding against large scale enterprise Active Directory requirements is a plus - ADSI, advanced PowerShell Scripting etc
  • Excellent English for both oral and written communications.
  • Need to work with technical teams across different time zones in Europe and the US
  • Target experience level: 10+ Years Active Directory experience

Associated topics: http, information architect, infrastructure, infrastructure architect, maintain, network, principal systems engineer, senior engineer, senior system engineer, server

South San Francisco, California, United States of America
Consultant Specialists
Consultant Specialists
5/19/2017 9:12:06 PM

We strongly recommend that you should never provide your bank account details to an advertiser during the job application process. Should you receive a request of this nature please contact support giving the advertiser's name and job reference.

Other jobs like this

Sunnyvale, California