Active Directory Architect
Clark Davis Associates, Convent Station, NJ, United States
About the Role
We’re seeking an experienced
Active Directory Engineer
to design, secure, and maintain our enterprise directory infrastructure. The ideal candidate will have deep expertise in
Active Directory
and
Azure AD , with additional experience integrating and managing
Okta
for single sign‑on (SSO) and identity federation. You will be responsible for ensuring directory health, automating administrative functions, and advancing our hybrid identity and access strategy. Key Responsibilities
Design, deploy, and maintain
Active Directory forests, domains, and Group Policy Objects (GPOs) . Manage
domain controllers ,
DNS ,
DHCP ,
FSMO roles ,
AD replication , and
trust relationships . Implement and maintain
Azure AD
synchronization and hybrid identity solutions. Integrate
Okta
with Active Directory for SSO, MFA, and lifecycle management. Develop and maintain
PowerShell
scripts to automate user provisioning, group management, and reporting. Conduct regular
AD health checks , resolve replication and authentication issues, and ensure high availability. Apply security best practices, including auditing, privileged access controls, and zero‑trust principles. Support identity lifecycle processes — joiners, movers, leavers, and access reviews. Collaborate with Cybersecurity and Infrastructure teams to strengthen directory hardening and compliance posture. Maintain documentation, architecture diagrams, and operational runbooks for AD and IAM systems. Required Qualifications
Bachelor’s degree in Computer Science, Information Systems, or related field (or equivalent experience). 5+ years of experience designing and supporting
Active Directory
and
Azure Active Directory
in enterprise environments. Strong understanding of
AD architecture ,
LDAP ,
Kerberos , and
Group Policy . Hands‑on experience with
Okta ,
Azure AD Connect , and
Entra ID . Strong scripting and automation skills in
PowerShell
(required). Working knowledge of
identity and access management (IAM) , including
SSO ,
MFA , and
RBAC . Experience troubleshooting complex authentication and directory synchronization issues. Preferred Qualifications
Microsoft Certified: Identity and Access Administrator
or
Windows Server Hybrid Administrator Associate . Okta Certified Professional
or
Administrator
certification. Experience with
Privileged Access Management (PAM)
solutions (CyberArk, BeyondTrust, etc.). Familiarity with
PKI ,
certificate management , and
secure LDAP . Understanding of
Zero Trust
and
identity governance
frameworks. Experience with
AD disaster recovery ,
backups , and
domain migrations . Soft Skills
Strong analytical and problem‑solving abilities. Excellent written and verbal communication skills. Highly organized with attention to detail. Collaborative mindset and ability to work across infrastructure and security teams. Pay Range
$150,000.00/yr - $160,000.00/yr Seniority level
Mid‑Senior level Employment type
Full‑time Job function
Information Technology Industries
Staffing and Recruiting Benefits
Medical insurance, 401(k)
#J-18808-Ljbffr
We’re seeking an experienced
Active Directory Engineer
to design, secure, and maintain our enterprise directory infrastructure. The ideal candidate will have deep expertise in
Active Directory
and
Azure AD , with additional experience integrating and managing
Okta
for single sign‑on (SSO) and identity federation. You will be responsible for ensuring directory health, automating administrative functions, and advancing our hybrid identity and access strategy. Key Responsibilities
Design, deploy, and maintain
Active Directory forests, domains, and Group Policy Objects (GPOs) . Manage
domain controllers ,
DNS ,
DHCP ,
FSMO roles ,
AD replication , and
trust relationships . Implement and maintain
Azure AD
synchronization and hybrid identity solutions. Integrate
Okta
with Active Directory for SSO, MFA, and lifecycle management. Develop and maintain
PowerShell
scripts to automate user provisioning, group management, and reporting. Conduct regular
AD health checks , resolve replication and authentication issues, and ensure high availability. Apply security best practices, including auditing, privileged access controls, and zero‑trust principles. Support identity lifecycle processes — joiners, movers, leavers, and access reviews. Collaborate with Cybersecurity and Infrastructure teams to strengthen directory hardening and compliance posture. Maintain documentation, architecture diagrams, and operational runbooks for AD and IAM systems. Required Qualifications
Bachelor’s degree in Computer Science, Information Systems, or related field (or equivalent experience). 5+ years of experience designing and supporting
Active Directory
and
Azure Active Directory
in enterprise environments. Strong understanding of
AD architecture ,
LDAP ,
Kerberos , and
Group Policy . Hands‑on experience with
Okta ,
Azure AD Connect , and
Entra ID . Strong scripting and automation skills in
PowerShell
(required). Working knowledge of
identity and access management (IAM) , including
SSO ,
MFA , and
RBAC . Experience troubleshooting complex authentication and directory synchronization issues. Preferred Qualifications
Microsoft Certified: Identity and Access Administrator
or
Windows Server Hybrid Administrator Associate . Okta Certified Professional
or
Administrator
certification. Experience with
Privileged Access Management (PAM)
solutions (CyberArk, BeyondTrust, etc.). Familiarity with
PKI ,
certificate management , and
secure LDAP . Understanding of
Zero Trust
and
identity governance
frameworks. Experience with
AD disaster recovery ,
backups , and
domain migrations . Soft Skills
Strong analytical and problem‑solving abilities. Excellent written and verbal communication skills. Highly organized with attention to detail. Collaborative mindset and ability to work across infrastructure and security teams. Pay Range
$150,000.00/yr - $160,000.00/yr Seniority level
Mid‑Senior level Employment type
Full‑time Job function
Information Technology Industries
Staffing and Recruiting Benefits
Medical insurance, 401(k)
#J-18808-Ljbffr