Sr. Windows and Active Directory Engineer

We are seeking a Senior Windows & Active Directory Engineer to provide Tier 3 support and engineering expertise across enterprise identity and Windows environments. This role serves as the primary escalation point for complex Active Directory and Windows Server issues, including Domain Controller migrations and identity lifecycle management.

You'll play a critical role in maintaining stability, driving root cause analysis, and improving identity and infrastructure operations. Secondary responsibilities include support for AWS and VMware environments. Key Responsibilities Primary Responsibilities (Core Focus) Active Directory & Domain Services * Provide Tier 3 support for Active Directory Domain Services (AD DS), including replication, DNS, authentication/authorization, trusts, and domain health * Support Domain Controller migrations (builds, upgrades, decommissioning, replication cutovers) * Administer and troubleshoot Group Policy Objects (GPOs), including design, deployment, and conflict resolution * Lead root cause analysis (RCA) for incidents and implement preventive solutions

Identity Lifecycle & Access Management * Manage joiner/mover/leaver processes, provisioning/deprovisioning, and access governance * Support identity platforms: + SailPoint IdentityNow (IGA) + Microsoft Identity Manager (MIM) * Troubleshoot identity synchronization, account correlation, and downstream provisioning issues

Windows Server Administration * Provide Tier 3 support for Windows Server (2012 R2-2025) * Perform patching, performance tuning, log analysis, and system recovery * Troubleshoot authentication (Kerberos/NTLM) and certificate-related issues * Contribute to system hardening, lifecycle management, and operational standards

Secondary Responsibilities AWS (High Priority) * Support EC2 and RDS environments * Troubleshoot connectivity, IAM permissions, backups, patching, and monitoring alerts * Collaborate with cloud teams to improve operations and documentation

Strong hands-on experience with Active Directory in enterprise environments * Proven Tier 3 troubleshooting expertise (GPO, replication, authentication, domain services) * Experience with identity lifecycle management and IAM/IGA platforms: + SailPoint IdentityNow + Microsoft Identity Manager (MIM) * Deep experience with Microsoft Windows Server (2012 R2-2025) * Strong documentation, incident management, and root cause analysis skills

Preferred Qualifications * Experience with AWS (EC2, RDS) * Familiarity with VMware vSphere/ESXi * Experience with Domain Controller migrations or hybrid identity environments * PowerShell scripting/automation skills * ITIL knowledge (Incident, Problem, Change Management)

Core Competencies * Advanced troubleshooting and analytical thinking * Strong communication skills (technical and non-technical) * Ability to manage high-severity incidents with ownership and urgency * Collaborative mindset across infrastructure, security, and application teams

Success in This Role * Reduction in recurring AD and identity-related incidents * Improved system reliability and performance * Timely resolution of escalations with high stakeholder satisfaction * Clear documentation and repeatable operational processes * Effective coordination during migrations and critical incidents