Summary
We are seeking a highly skilled Active Directory Engineer with experience in planning and executing Active Directory (AD) migrations/Upgrade. The ideal candidate will be responsible for developing comprehensive upgrade plans, performing assessments of existing environments, and ensuring a seamless migration with minimal disruption. In addition, candidate should have skill to lead the project and deal with stakeholders.
Responsibilities :
- Lead end-to-end Active Directory migration and upgrade initiatives across enterprise environments.
- Perform comprehensive assessments of existing AD infrastructure, including domain controllers, Group Policies, DNS, DFS, and security configurations.
- Design and implement AD upgrade strategies to modern Windows Server environments (e.g., Windows Server 2025).
- Identify and eliminate dependencies on legacy AD systems while ensuring business continuity.
- Plan and execute domain controller lifecycle activities, including promotion, demotion, and decommissioning.
- Collaborate with application, network, and security teams to ensure compatibility and seamless integration during migration.
- Work with application owners to remediate insecure protocols and remove hardcoded dependencies.
- Manage and troubleshoot Active Directory Federation Services (ADFS) and directory synchronization issues.
- Administer and support DFS, DNS, and Group Policy infrastructure.
- Utilize migration tools such as ADMT, Quest Migration Manager, or equivalent solutions.
- Develop and execute pre-migration validation, testing, and rollback strategies.
- Automate administrative and migration tasks using PowerShell scripting.
- Ensure adherence to security policies, compliance standards, and AD best practices.
- Provide post-migration support and resolve complex technical issues.
- Act as a technical lead, guiding L1/L2 engineers and ensuring adherence to ITIL processes.
- Prepare and maintain technical documentation, runbooks, and knowledge base articles.
Requirements
- Bachelor's degree in Information Technology or related field
- Minimum 10 years of experience in Active Directory administration, engineering, and lifecycle management.
- Proven track record in planning and executing AD migration and upgrade projects.
- Strong expertise in multi-site, multi-domain, and multi-forest AD environments.
- Hands-on experience with AD migration tools (e.g., ADMT, Quest Migration Manager).
- Strong knowledge of Windows Server platforms (2016/2019/2022 2025 preferred).
- Deep understanding of authentication, authorization, and OS-level security.
- Proficiency in PowerShell scripting for automation and administration.
- Experience with Active Directory Certificate Services (ADCS), ADFS, and Identity Management solutions.
- Knowledge of IAM, Entra ID, and Single Sign-On (SSO) technologies.
- Strong experience in DFS, DNS, and Group Policy management.
- Experience performing AD health checks and performance tuning.
- Familiarity with ITIL processes and tools such as ServiceNow (Incident, Problem, and Change Management).
- Strong problem-solving, troubleshooting, and analytical skills.
- Excellent communication, stakeholder management, and documentation skills.
