Are you ready for a better career?
Microsoft Active Directory Subject Matter Expert (SME)
- Annapolis Junction, MD Primary - JBAB Depends on Responsibilities - Landover, MD Future
- Full-Time
- Position Id: 75
- Clearance Required: Current/Active TS/SCI
- Position Timing: Active Opening
- Work Schedule: Onsite – 5 Days/Week
- Period of Performance: 01/08/2024 – 08/30/2028
Overview
The Microsoft Active Directory Subject Matter Expert (SME) will support our enterprise infrastructure initiatives. This individual will lead the architecture, design, deployment, and ongoing operations of Microsoft AD services, including Azure Active Directory, Group Policy, Identity Federation, and associated authentication systems. The ideal candidate will bring deep expertise in AD forest design, domain consolidation, AD hardening, and security best practices, with a strong focus on enterprise-scale environments.
|
Program Position / Job Title
|
Level
|
|||||
|---|---|---|---|---|---|---|
|
1
|
2
|
3
|
4
|
5
|
Grand Total
|
|
|
Data Center Engineer (VMware SME)
|
|
|
1
|
|
|
1
|
|
Enterprise Services Engineer (Exchange SME)
|
|
|
|
1
|
|
|
For general guidance, levels are defined here.
Responsibilities
- Serve as the technical authority on all matters related to Microsoft Active Directory and identity services.
- Design, implement, and manage scalable and secure AD infrastructures (on-premises and cloud hybrid).
- Oversee AD migrations, upgrades, domain consolidation, and forest restructuring.
- Develop and enforce AD-related security policies and standards, including privileged access management.
- Manage integration with Azure AD, ADFS, MFA, SSO, and conditional access policies.
- Collaborate with cybersecurity teams to strengthen identity security posture.
- Conduct regular AD health checks, performance tuning, and troubleshooting.
- Document architecture, configurations, operational procedures, and support guides.
- Provide mentoring and training to junior team members and IT support staff.
Qualifications
- Experience managing enterprise Active Directory environments.
-
Expert knowledge of:
- AD DS (Domain Services), DNS, DHCP, and Group Policy
- Azure Active Directory, AD Connect, and Hybrid Identity solutions
- ADFS, LDAP, Kerberos, NTLM authentication
- Strong PowerShell scripting and automation skills.
- Experience with Zero Trust principles and identity governance tools.
- Familiarity with ITIL-based service management and change control.
- Experience in software engineering and integration of Commercial Off-the-Shelf software products
- Must have a current DoD 8570.1-M/8140 IAT Level III certification
Desired Qualifications
- ITIL Foundations certification desired
- Microsoft Certified: Identity and Access Administrator Associate or similar.
- Experience with Microsoft Entra, MIM (Microsoft Identity Manager), or Okta.
- Previous experience in regulated environments (e.g., financial, healthcare, or government).
*Don’t see your perfect role? [Send us your resume.] We’re always looking for passionate innovators.
Interested Candidates:
- Please send your resume to [email protected] (Attn: Sia Floyd)
- Please include the ‘Job Title and Position #’ with your submission.
*Don’t see your perfect role? [Send us your resume.] We’re always looking for passionate innovators.