Senior Active Directory Engineer

Hamilton Barnes
Charing Cross, United Kingdom
yesterday

Role details

Contract type
Temporary contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior
Compensation
£ 117K

Job location

Charing Cross, United Kingdom

Tech stack

Microsoft Active Directory
JIRA
User Authentication
Azure
Identity and Access Management
Azure

Job description

We are seeking an experienced Senior Active Directory Engineer to support a large-scale enterprise infrastructure and identity transformation programme. This role is focused on assessing, designing, and implementing secure Active Directory solutions across a complex enterprise environment.

You will work closely with infrastructure, security, and application teams to strengthen Active Directory security, improve operational efficiency, and deliver robust identity and access management solutions.

Key Responsibilities

  • Review and assess existing Active Directory architecture and tiering implementation.
  • Conduct gap analysis against target-state architecture and security standards.
  • Validate business and application ownership within the AD tiering model.
  • Review cross-tier dependencies and identify associated risks.
  • Assess and remediate service accounts and scheduled tasks.
  • Design and implement secure Active Directory configurations.
  • Manage Active Directory users, groups, organisational units, and permissions.
  • Support change implementation, testing, and post-deployment validation.
  • Produce technical documentation, implementation plans, and remediation recommendations.
  • Collaborate with security, infrastructure, and application teams to deliver project objectives.

Requirements

  • Extensive hands-on experience with Microsoft Active Directory.
  • Strong knowledge of AD architecture, including forests, domains, trusts, sites, and replication.
  • Experience managing large enterprise Active Directory environments.
  • Expertise in Active Directory Tiering (Tier 0, Tier 1, Tier 2).
  • Strong understanding of identity, authentication, and authorisation.
  • Experience designing and managing Organisational Unit (OU) structures and delegation models.
  • Knowledge of Group Policy administration and inheritance.
  • Experience reviewing privileged access, delegated permissions, and service accounts.
  • Ability to perform security assessments and gap analysis.
  • Strong communication and stakeholder management skills.

Desirable Skills

  • Microsoft Entra ID (Azure AD) and hybrid identity experience.
  • Exposure to PAM/PIM or identity governance solutions.
  • Experience with Quest Active Roles or similar tools.
  • Knowledge of Jira, Azure DevOps, or Kanban.
  • Familiarity with ITSM processes and BMC Remedy.
  • Ability to communicate technical concepts to both technical and non-technical stakeholders.

Apply for this position