Active Directory SME - SC cleared

CBS Butler Limited
Charing Cross, United Kingdom
2 days ago

Role details

Contract type
Temporary contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Compensation
£ 163K

Job location

Remote
Charing Cross, United Kingdom

Tech stack

Microsoft Active Directory
Active Directory Federation Services
Domain Controllers
Dynamic Host Configuration Protocol
Disaster Recovery
Integrated Windows Authentication
DNS
Identity and Access Management
Kerberos (Protocol)
Lightweight Directory Access Protocols (LDAP)
Windows Server
OAuth
Powershell
Role-Based Access Control
Azure
Security Assertion Markup Language (SAML)
Data Logging
Scripting (Bash/Python/Go/Ruby)
Okta
System Availability
User Administration

Job description

Core Technical Activities

Design & Architecture

  • Develop and maintain AD architecture for scalability, security, and high performance.
  • Plan and implement domain and forest designs, trust relationships, and OU structures.

Administration & Operations

  • Manage domain controllers, replication, DNS, and DHCP integration.
  • Create, maintain, and troubleshoot Group Policy Objects (GPOs).
  • Monitor AD health, diagnose replication issues, and resolve authentication failures.

Security & Compliance

  • Implement enterprise AD security best practices (eg, tiered admin model, secure LDAP).
  • Perform audits of accounts, groups, and permissions.
  • Support SOX, GDPR, and other compliance requirements through logging and access control.

Identity & Access Management

  • Manage full user life cycle: provisioning, deprovisioning, and RBAC.
  • Integrate AD with IAM and cloud platforms (Azure AD, Okta, etc.).
  • Support SSO and federation (ADFS, SAML, OAuth).

Migrations & Upgrades

  • Lead AD migrations, domain/forest consolidations, and Windows Server upgrades.
  • Plan schema extensions and ensure application compatibility.

Disaster Recovery & Continuity

  • Develop, document, and test AD backup and recovery processes.
  • Maintain high availability and failover strategies for critical AD components.

Automation & Scripting

  • Use PowerShell to automate tasks, generate reports, and streamline operations.
  • Build scripts for bulk user management, GPO deployment, and auditing.

Collaboration & Support

  • Partner with infrastructure, security, and application teams to deliver integrated services.
  • Provide SME-level support for escalated incidents and complex service requests.

Requirements

+AD design

+GPO

+AZure AD

As the Active Directory SME, you will take ownership of the design, architecture, and operational excellence of Microsoft Active Directory services. You will act as the technical authority for AD-related activities, ensuring the environment remains secure, scalable, compliant, and aligned to organisational strategy. This role includes both hands-on engineering and strategic project leadership., The ideal contractor will bring 5+ years of hands-on experience in a similar AD-focused role, with expertise in:

  • Active Directory Architecture & Replication
  • GPO Design, Deployment & Troubleshooting
  • DNS/DHCP integration with AD
  • PowerShell Scripting for automation and reporting
  • ADFS configuration and federation support
  • Azure AD - hybrid identity & sync (AAD Connect)
  • Kerberos and NTLM authentication
  • LDAP/LDAPS
  • Active Directory Certificate Services (AD CS)

Apply for this position