Diligente Technologies

Compensation

Full Description

Role: Windows Active Directory Architect/Engineer Location: Remote in Pacific work hours 12+ Months Responsibilities: • The Windows Active Directory Engineer we are seeking has 10 + years of Windows experience. • You should be a Windows Guru knowing it inside and out. • Manage workstations with imaging platform. • Manage templates and apply/manage settings via group policies. • Desired State Configuration via Scripting/GPO/SCCM. • Excellent troubleshooting skills. • Microsoft Windows certifications are ideal and highly desired for this position. Required (Minimum) Qualifications • 10 years IT work experience • 6-7 years Windows OS Active Directory engineer responsible for the following: o Windows 11/2019/2022 Performance management, monitoring, and tuning o Windows 11/2019/2022 Security and Hardening o Windows 11/2019/2022 Configuration Management and Drift Prevention o Windows 11/2019/2022 GPOs o Windows 11/2019/2022 User Experience o Windows 11/2019/2022 roadmap and planning o Windows 11/2019/2022 PowerShell and Scripting o Windows 11/2019/2022 MFA, RSA and MS Authenticator o Windows AD, ADFS, DNS, and DHCP infrastructure • Strong understanding of AD Attributes, LDAP Queries, PowerShell Scripting to Modify AD Attributes, Group Policy Analysis, GPO Configuration & Item-Level Targeting, Workstation Configurations, Browser Configuration Settings, familiarity with VMware and other Applications that integrated with Active Directory • Strong knowledge of permissions that are granted natively to various Microsoft Built-In Groups to perform Active Directory Administrative Functions, knowledge of native permissions granted when building AD objects, knowledge of permissions granted natively to Built-In Groups via GPOs and/or Local Policies • Thorough functional understanding and ability to configure Active Directory Server Roles (CAs, IIS, File/Print, DNS) • Working knowledge of GPOs, AD Sites, Replication Topology, and native AD troubleshooting tools • The Active Directory Engineer will plan, support, implement and design a directory synchronization system for Microsoft Active Directory and Windows-based systems across the enterprise, including directory and identity management solutions • Implementation of Business-driven changes, Configuration of Group Policies and Integration of AD Management tools/services • Analysis, design and implementation of Active Directory and Identity Management solutions • Independently manage and perform engineering lead role for large scale Active Directory and Identity Management projects • Analyze current Active Directory environment to identify both technical and operational challenges and develop solutions for improvement • Analysis, design, capacity planning and implementation of Active Directory Security • Write Filter Configuration and Management • Public Key Infrastructure (PKI) • Platforms: PC, Laptops, VMware VDI, Wyse Enterprise IoT, Azure VDI • Cloud, Azure • Intune • Intune Autopilot/ESP • Modern Build Tools NuGet, Chocolatey • Automation • Infrastructure as Code • Declarative and Immutable environments, Desired State Configuration • PowerShell Tooling, not just PowerShell Preferred Qualifications • 10 years of experience with Windows tools • Application Packaging • Previous experience working for Microsoft or major consulting firm – a big plus • Securing the operating system, a big plus, such as Defender support (Defender ATP/Defender for Endpoint) o MS Defender o MS Defender Azure Services o Symantec AV o Crowdstrike o ForcePoint o Qualys o RSA endpoint Training/Certifications • Bachelors Degree in Computer Science or a related field • Microsoft Windows certifications are ideal and highly desired for this position.