Enterprise Directory Services - Remote

Overview

Lead design, implementation, and security of enterprise directory services for USCIS.

Key Responsibilities

• directory management
• identity lifecycle
• security hardening
• migration initiatives
• capacity planning
• high availability

Tasks

-Maintain documentation: directory topology, policies, procedures, standard operating procedures (SOPs), emergency recovery plans, schema change management, configurations. -Mentor junior directory administrators and engineers; provide knowledge transfer. -Participate in architecture review boards, change control boards for any changes to directory services. -Support compliance efforts with NIST, FISMA, DHS policies, and any USCIS / federal mandates relevant to identity and directory services. -Troubleshoot and resolve complex directory service issues: authentication problems, replication failures, trust issues, group policy conflicts, schema extensions, latency, performance bottlenecks. -Manage identity lifecycle integration: onboarding/offboarding, account provisioning/deprovisioning across enterprise applications leveraging directory services. -Collaborate with Security, IAM/ICAM/Identity teams, Network, Infrastructure, Application, and Cloud teams to integrate directory services with broader enterprise identity and access management, authentication/authorization systems, SSO, MFA, certificate services etc. -Lead modernization and migration initiatives (e.g. domain/forest consolidation, directory upgrades, cloud integration, directory as a service, or moving parts of identity to Azure AD or hybrid cloud). -Ensure high availability, disaster recovery, redundancy, and fault tolerance for directory services. -Architect and enforce security standards for directory services: least privilege, secure administrative practices, privileged access management, hardening of domain controllers, role separation, logging and auditing. -Provide expert guidance on directory-sizing, capacity planning, patching/upgrades, and domain controller life cycle management. -Lead the design, administration, and optimization of enterprise directory services (e.g., Microsoft Active Directory, AD FS, AD LDS, LDAP directories, Azure AD, hybrid directory environments). -Oversee directory service operations: domain/forest architecture, tree structure, schema design, group policy, domain controllers, replication, global catalog, trust relationships, DNS/DHCP integration.

Requirements

• active directory
• azure ad
• powershell
• bachelor's
• us citizenship
• 7+ years

What You Bring

-Proven experience securing directory services: hardening domain controllers, applying patches, managing privilege elevation, auditing/logging. -Excellent communication skills, both technical and non-technical; ability to produce documentation and briefing materials. -Experience integrating directory services with application authentication (SSO, OAuth, SAML, etc.). -U.S. Citizenship; must satisfy DHS/USCIS suitability or security clearance requirements. -Experience with schema management, directory upgrades, migrations, forest/domain consolidations. -Deep expertise in Microsoft Active Directory (AD DS), AD FS, AD LDS, Azure AD/Azure AD Connect, hybrid directory infrastructures. -Bachelor’s degree (Computer Science, Information Systems, Cybersecurity, or related field). Advanced degree a plus. -Substantial experience (often 7-12+ years) working with directory services in large, complex enterprise environments. -Certifications such as Microsoft Certified: Identity and Access Administrator, MCSA/MCSE, or equivalent. -Strong analytical/problem-solving and troubleshooting skills. -Good scripting/automation skills (PowerShell, etc.) to manage directory tasks, monitoring, maintenance, and deployments. -Hands-on experience with cloud-based directory and identity services (Azure AD, AWS Directory Service, etc.). -Strong knowledge of group policy design, DNS, domain/forest functional levels, replication and trust relationships. -Experience with third-party directory or identity services tools (e.g. LDAP systems, non-Microsoft directories).

People Also Searched For

About Akima

-Founded with a vision to support critical sectors, providing solutions across defense, intelligence, and civil sectors. -Serves a broad spectrum of industries, including energy, infrastructure, and water resources. -Delivered complex projects, such as large-scale infrastructure upgrades and energy management solutions. -Projects often involve intricate logistical coordination, requiring a deep understanding of specialized markets. -Approach is deeply collaborative, often working alongside government agencies and other key partners. -Noteworthy projects include managing water resource systems and optimizing energy infrastructure for municipalities. -Focus on operational excellence makes it a go-to partner for government and private sector organizations.

Sector Specialisms

Security Clearance

-u.s. citizenship required; must satisfy dhs/uscis suitability or security clearance requirements.