Active Directory Security Engineer

Overview We are seeking a senior Active Directory Security Engineer to join a highly specialized engineering team responsible for the design, security, and architecture of a large-scale enterprise Active Directory environment. This is a pure engineering role focused on design, security hardening, and architecture-not operational support. The environment supports one of the largest Active Directory infrastructures globally, requiring deep experience in enterprise-scale AD security, architecture, and Group Policy design.

Project Details

• Project Focus: Active Directory Group Policy (GPO) cleanup and security hardening initiative
• Phase: Active remediation and modernization of enterprise GPO structure
• Environment: Large-scale enterprise AD infrastructure supporting a multinational organization
• Work Type: Ongoing engineering initiatives focused on AD architecture, security posture, and policy design
• Infrastructure: 100% on-premises domain environment, * Design, engineer, and secure large-scale Active Directory environments in an enterprise setting.
• Lead Group Policy architecture, rationalization, and cleanup initiatives across complex AD domains.
• Develop PowerShell automation to support GPO restructuring, auditing, and policy management.
• Design and implement secure Active Directory architectures, including multi-forest and privileged access models.
• Engineer and maintain Active Directory domain controller infrastructure.
• Implement and maintain AD security best practices, including privileged access isolation and security boundary enforcement.
• Evaluate and strengthen encryption protocols and authentication mechanisms across the AD environment.
• Partner with security and infrastructure teams to maintain a hardened enterprise identity platform.

Do you have experience in Shell Scripting?, * 10+ years of enterprise Active Directory engineering experience

• Extensive experience with Active Directory architecture, design, and security engineering
• Deep expertise in Group Policy Objects (GPO) design, management, and remediation
• Strong PowerShell scripting skills for automation and AD policy management
• Experience engineering enterprise-scale AD environments supporting multinational organizations
• Advanced knowledge of Active Directory security architecture
• Strong experience with domain controller design, build, and deployment
• Deep understanding of authentication and encryption protocols

Preferred Experience

• Experience working in large financial or enterprise-scale environments
• Experience with multi-forest Active Directory environments
• Knowledge of Red Forest / Enhanced Security Administrative Environment (ESAE) models
• Experience designing Bastion Forest architectures
• Background in enterprise identity security and privileged access models

Pulled from the full job description

• 401(k)
• Health insurance
• Vision insurance
• Dental insurance, * Health, vision, and dental insurance (single and family coverage)
• 401(k) plan (employee contributions only)

About Matlen Silver Experience Matters. Let your experience be driven by our experience. For more than 40 years, Matlen Silver has delivered solutions for complex talent and technology needs to Fortune 500 companies and industry leaders. Led by hard work, honesty, and a trusted team of experts, we can say that Matlen Silver technology has created a solutions experience and legacy of success that is the difference in the way the world works. Matlen Silver is an Equal Opportunity Employer and considers all applicants for all positions without regard to race, color, religion, gender, national origin, age, sexual orientation, veteran status, the presence of a non-job-related medical condition or disability, or any other legally protected status.