Talent.com
Senior Active Directory Engineer - AD & SailPoint
Senior Active Directory Engineer - AD & SailPointBeacon Hill • Los Angeles, CA, US
Senior Active Directory Engineer - AD & SailPoint

Senior Active Directory Engineer - AD & SailPoint

Beacon Hill • Los Angeles, CA, US
7 days ago
Job type
  • Full-time
Job description

Senior Active Directory Engineer – AD & SailPoint

Overview

Seeking a Senior Active Directory Engineer to lead enterprise-scale Active Directory (AD) and Identity Management initiatives, including AD cloud migration and SailPoint integration. This role will drive security hardening, domain controller optimization, and identity lifecycle governance to support a secure, scalable infrastructure.

Must-Have Qualifications

  • 5 years of experience designing, implementing, and managing enterprise AD environments.
  • Expertise in Active Directory, Azure AD, Microsoft Identity Manager, ADFS, and AADC.
  • Strong knowledge of SailPoint IdentityIQ or IdentityNow (preferred).
  • Experience with PKI certificate management and compliance.
  • Ability to troubleshoot AD, DNS, and authentication issues.
  • Track record of leading complex infrastructure projects with cross-team coordination.

Key Responsibilities

  • Lead assessment, migration, and decommissioning of AD domain controllers.
  • Design and implement LDAP-based identity solutions across AD, Azure AD, and Microsoft Identity Manager.
  • Integrate and support SailPoint IdentityIQ / IdentityNow for identity governance and lifecycle management.
  • Manage PKI certificate migration to Microsoft PKI services, ensuring compliance and security.
  • Optimize AD replication, topology, and Group Policy management.
  • Remediate stale objects, orphaned accounts, and unused policies.
  • Troubleshoot AD, DNS, PKI, and authentication-related issues in collaboration with security teams.
  • Maintain thorough documentation of configurations, policies, and procedures.

    • Beacon Hill is an equal opportunity employer and individuals with disabilities and / or protected veterans are encouraged to apply.

    California residents : Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.

    J-18808-Ljbffr

    Create a job alert for this search

    Active Directory Engineer • Los Angeles, CA, US