Active Directory Architect
Tenet Healthcare, Dallas, TX, United States
Job Summary
Tenet Healthcare Corporation (NYSE: THC) is a diversified healthcare services company headquartered in Dallas with more than 100,000 employees. Through an expansive care network that includes United Surgical Partners International, we operate more than 535 ambulatory centers and surgical hospitals, 50 hospitals and approximately 160 additional outpatient centers and other sites of care. We also operate Conifer Health Solutions, which provides revenue cycle management and value‑based care services to hospitals, health systems, physician practices, employers and other clients. Our mission is to deliver quality, compassionate care in the communities we serve. For more information, visit www.tenethealth.com.
Drive the future of our Identity and Access Management and become the backbone architect of Tenet’s Active Directory. Tenet Healthcare is seeking an experienced Active Directory Architect responsible for designing, implementing and maintaining Tenet’s AD infrastructure and operations. This critical role will guide IT and IAM strategy, build AD strategy, optimize AD operations, and align AD architecture to address business risks while delivering the best user experience. The role is both strategic and operational, working alongside multiple stakeholders and managed services partners to drive daily AD operations and architect a best‑in‑class Active Directory−as‑a‑service model.
Reporting Structure & Work Setting Position reports directly to the Senior Director, Identity Access and Application Security, as part of the Identity Access Management team within Enterprise Cybersecurity led by the Chief Information Security Officer. The position will be office‑based at our Dallas, Texas Corporate office and may be eligible for remote work for the right candidate.
Responsibilities
Enhance and modernize Active Directory architecture to improve scalability, security, and operational efficiency across forests, domains, DNS, and GPO structures.
Integrate AD with key IAM platforms (Okta, CyberArk, cloud identity services) to strengthen authentication, access workflows, and healthcare application onboarding.
Ensure AD availability, performance, and security through proactive monitoring, risk remediation, and robust backup/recovery strategies.
Support major AD initiatives such as migrations, trust relationships, greenfield builds, and AD/DNS configuration changes tied to business or security programs.
Develop standards, diagrams, and workflows that govern AD operations and drive consistency across global teams.
Lead capacity planning and optimization to align directory services with growth, performance requirements, and cost expectations.
Partner with Cloud Security and Azure teams to align AD strategy with broader cloud roadmap and Zero Trust initiatives.
Provide leadership to global operations teams and collaborate with cross‑functional stakeholders to deliver scalable, customer‑focused solutions.
Qualifications Education and Work Experience
10+ years of work experience in Active Directory architecture and engineering, including multi‑forest environments.
Bachelor's or Master’s Degree or related technology degree.
Certifications preferred – PMP, ITIL, Identity Certifications.
Microsoft certifications, Full Stack Engineering and Platform Engineering certifications, and/or International Information System Security Certification Consortium certification is a plus.
Specialized Knowledge, Skills & Abilities
Strong hands‑on experience with Active Directory design and operations, including domain controllers, replication, DNS, and GPOs, with a focus on AD architecture across OU structures, trust relationships, multi‑domain/forest environments, and schema changes.
Experience contributing to or executing directory consolidation, domain restructuring, or cleanup efforts.
Ability to monitor and maintain directory availability, replication health, and other operational KPIs.
Experience improving automation coverage for repeatable tasks.
Hands‑on experience with scripting and automation (e.g., PowerShell).
Employment practices will not be influenced or affected by an applicant’s or employee’s race, color, religion, sex (including pregnancy), national origin, age, disability, genetic information, sexual orientation, gender identity or expression, veteran status or any other legally protected status. Tenet will make reasonable accommodations for qualified individuals with disabilities unless doing so would result in an undue hardship. Tenet participates in the E‑Verify program. Follow the link below for additional information. E‑Verify: http://www.uscis.gov/e-verify The employment practices of Tenet Healthcare and its companies comply with all applicable laws and regulations.
#J-18808-Ljbffr
Drive the future of our Identity and Access Management and become the backbone architect of Tenet’s Active Directory. Tenet Healthcare is seeking an experienced Active Directory Architect responsible for designing, implementing and maintaining Tenet’s AD infrastructure and operations. This critical role will guide IT and IAM strategy, build AD strategy, optimize AD operations, and align AD architecture to address business risks while delivering the best user experience. The role is both strategic and operational, working alongside multiple stakeholders and managed services partners to drive daily AD operations and architect a best‑in‑class Active Directory−as‑a‑service model.
Reporting Structure & Work Setting Position reports directly to the Senior Director, Identity Access and Application Security, as part of the Identity Access Management team within Enterprise Cybersecurity led by the Chief Information Security Officer. The position will be office‑based at our Dallas, Texas Corporate office and may be eligible for remote work for the right candidate.
Responsibilities
Enhance and modernize Active Directory architecture to improve scalability, security, and operational efficiency across forests, domains, DNS, and GPO structures.
Integrate AD with key IAM platforms (Okta, CyberArk, cloud identity services) to strengthen authentication, access workflows, and healthcare application onboarding.
Ensure AD availability, performance, and security through proactive monitoring, risk remediation, and robust backup/recovery strategies.
Support major AD initiatives such as migrations, trust relationships, greenfield builds, and AD/DNS configuration changes tied to business or security programs.
Develop standards, diagrams, and workflows that govern AD operations and drive consistency across global teams.
Lead capacity planning and optimization to align directory services with growth, performance requirements, and cost expectations.
Partner with Cloud Security and Azure teams to align AD strategy with broader cloud roadmap and Zero Trust initiatives.
Provide leadership to global operations teams and collaborate with cross‑functional stakeholders to deliver scalable, customer‑focused solutions.
Qualifications Education and Work Experience
10+ years of work experience in Active Directory architecture and engineering, including multi‑forest environments.
Bachelor's or Master’s Degree or related technology degree.
Certifications preferred – PMP, ITIL, Identity Certifications.
Microsoft certifications, Full Stack Engineering and Platform Engineering certifications, and/or International Information System Security Certification Consortium certification is a plus.
Specialized Knowledge, Skills & Abilities
Strong hands‑on experience with Active Directory design and operations, including domain controllers, replication, DNS, and GPOs, with a focus on AD architecture across OU structures, trust relationships, multi‑domain/forest environments, and schema changes.
Experience contributing to or executing directory consolidation, domain restructuring, or cleanup efforts.
Ability to monitor and maintain directory availability, replication health, and other operational KPIs.
Experience improving automation coverage for repeatable tasks.
Hands‑on experience with scripting and automation (e.g., PowerShell).
Employment practices will not be influenced or affected by an applicant’s or employee’s race, color, religion, sex (including pregnancy), national origin, age, disability, genetic information, sexual orientation, gender identity or expression, veteran status or any other legally protected status. Tenet will make reasonable accommodations for qualified individuals with disabilities unless doing so would result in an undue hardship. Tenet participates in the E‑Verify program. Follow the link below for additional information. E‑Verify: http://www.uscis.gov/e-verify The employment practices of Tenet Healthcare and its companies comply with all applicable laws and regulations.
#J-18808-Ljbffr