Senior Active Directory (AD) Engineer

Technology Experience:

• Experience with an Active Directory environment with multiple forests in an enterprise environment, Lightweight Directory Access Protocol (LDAP) directories, Public Key Infrastructure (PKI) systems, Enterprise Identity, Credential and Access Management (e-ICAM) and enclaves.

Forest & Domain Management:

• Design and maintain the customer's Active Directory architecture, including forest trusts, domain controllers, and site topologies to ensure seamless replication across the Network.

ICAM & Identity Modernization:

• Implement and support Identity, Credential, and Access Management (ICAM) solutions, including the integration of Azure Active Directory (Entra ID) for hybrid cloud environments and Office 365.

Security & STIG Compliance:

• Hardening the AD environment by applying DISA STIGs (Security Technical Implementation Guides). This includes managing the Tier Model (Tier 0, 1, 2) to prevent privilege escalation and lateral movement.

Group Policy Governance:

• Create, test, and manage complex Group Policy Objects (GPOs) to enforce security settings and software configurations across the enterprise.

Automation:

• Develop and maintain advanced PowerShell scripts to automate routine tasks, such as bulk account provisioning, auditing, and health checks.

Clearance Requirement:

• Most roles require at least a Secret clearance, with some requiring Top Secret (TS/SCI) depending on the sensitivity of the systems.

Certifications (DoD 8570):

• Must meet IAT Level II or III requirements. Common requirements include Security+ CE and a computing environment certification like Microsoft Certified: Identity and Access Administrator Associate.

Experience:

• Typically 8-10+ years of experience managing large-scale, distributed AD environments, specifically within a DoD or federal context.

Technical Skills:

• Deep expertise in AD DS, ADFS (Federation Services), Azure AD Connect, and PKI (Public Key Infrastructure)/Certificate Services.

We offer competitive compensation and an extraordinary benefits package including health, dental and vision insurance, 401K with company matching, flexible spending accounts, paid holidays, three weeks paid time off, and more.

This role is execution-oriented and ensures that the customer's global directory services remain secure, compliant with Department of Defense (DoD) mandates, and highly available for thousands of users across multiple sites.

Koniag IT Systems, LLC, a Koniag Government Services company, is seeking a Senior Active Directory (AD) Engineer to support KITS and our government customer in Carson, CA. This position is for a Future New Business Opportunity., Koniag Government Services (KGS) is an Alaska Native Owned corporation supporting the values and traditions of our native communities through an agile employee and corporate culture that delivers Enterprise Solutions, Professional Services and Operational Management to Federal Government Agencies. As a wholly owned subsidiary of Koniag, we apply our proven commercial solutions to a deep knowledge of Defense and Civilian missions to provide forward leaning technical, professional, and operational solutions. KGS enables successful mission outcomes for our customers through solution-oriented business partnerships and a commitment to exceptional service delivery. We ensure long-term success with a continuous improvement approach while balancing the collective interests of our customers, employees, and native communities. For more information, please visit www.koniag-gs.com. Equal Opportunity Employer/Veterans/Disabled. Shareholder Preference in accordance with Public Law 88-352