Senior Directory Services Engineer

• Owns the engineering, design, and lifecycle management of directory services platforms including Active Directory, Azure Active Directory, and other cloud-based directory platforms, across multiple environments and entities, along with supporting technologies (Sites and Services, Group Policy, PKI).
• Manages multi-forest architectures and cross-entity trust relationships to ensure seamless authentication and authorization across organizations, including integration of directory services during mergers and acquisitions, with a focus on coexistence, migration planning, post-migration stabilization, decommissioning, and documentation and knowledge transfer to ensure continuity and support.
• Provides leadership in establishing technical standards, architectural roadmaps, and operational best practices for directory services, including ongoing system health monitoring, maintenance, and capacity planning.
• Leads resolution of complex or escalated issues related to authentication, replication, trusts, or integration with enterprise systems.
• Partners with networking and security teams to ensure directory services align with security, compliance, and business requirements.
• Develops and maintains automation for provisioning, monitoring, reporting, and validation to improve efficiency and reduce risk.
• Guides and mentors junior engineers with a focus on technical guidance and serves as an escalation point for directory-related support.
• Participates in planning and execution of strategic initiatives such as forest/domain redesign, modernization of legacy domain functional levels, hybrid cloud identity adoption, and cross-platform integrations.

• Advanced expertise in directory services architecture, replication, and troubleshooting, with emphasis on Active Directory and related platforms.
• Strong understanding of directory technologies and supporting services such as Group Policy, Kerberos, trusts, and PKI.
• Proficiency with PowerShell and automation frameworks.
• Experience with Azure Active Directory and hybrid identity solutions across multi-cloud environments.
• Familiarity with identity federation and modern authentication protocols (SAML, OIDC, OAuth).
• Knowledge of multi-forest and multi-entity trust models, migrations, and consolidations.
• Ability to balance technical execution with architectural planning and standards development.
• Strong analytical, communication, and leadership skills.
• Ability to provide strategic input while maintaining hands-on ownership of critical directory services.

• Bachelor’s degree in Computer Science, Information Systems, or related field, or equivalent work experience.
• Typically requires 7 or more years of experience with directory services in large-scale, multi-entity enterprise environments.
• Demonstrated experience leading directory services projects or initiatives with enterprise impact, including migrations, integrations, consolidations, and modernization of legacy environments.
• Industry certifications (MCSE, Microsoft Certified: Identity and Access Administrator Associate, Azure Solutions Architect, or other relevant Microsoft and cloud directory certifications) preferred.

Ryder