Sr. Lead Directory Services Engineer

The Senior Lead Directory Services Engineer is responsible for leading and advancing enterprise directory infrastructure across on-premise, hybrid, and cloud environments. This role oversees Microsoft Active Directory, Entra ID/Azure AD, LDAP directories, Ping Directory, and RadiantOne VDS—along with domain controllers, servers, storage, and network dependencies. This individual ensures uptime, security, replication integrity, and modernization of identity platforms while partnering with Cyber, Infrastructure, and Business stakeholders. RESPONSIBILITIES: Key areas of focus for the Directory Services Engineer include ensuring global uptime, monitoring, and failover of directory services, seamlessly connecting directory services with identity and business systems, and enforcing secure protocols, admin separation, and access tiering. The successful candidate will be responsible for the following activities: Directory & Infrastructure Leadership Design, secure, and maintain Active Directory, Entra ID/Azure AD, LDAP, Ping Directory, and RadiantOne VDS Manage domain controllers, server builds, storage integration, replication roles, and monitoring Oversee DNS/DHCP integration, site topology, failover, and global uptime Networking & Platform Integration Partner with network teams to manage VLANs, firewalls, subnets, VPN/site links, and isolated environments Coordinate directory services across Windows, Linux, Unix (AIX/Solaris), and macOS platforms Architecture, Security & Hardening Implement forest/domain architecture, OU models, replication topology, and delegated access Apply Tier 0 protections, MFA integration, privileged access separation, and credential hardening Enforce CIS, DISA STIG, and Microsoft baselines for directory services and supporting systems GPO & Policy Enforcement Lead Group Policy design and enforcement for security baselines, login policies, TLS/LDAPS, firewall controls, encryption, and device posture Conduct policy audits, conflict resolution, and impact assessments Identity Lifecycle & Object Governance Oversee provisioning and synchronization of users, groups, service accounts, and privileged identities Manage schema extensions, object standards, and directory hygiene across hybrid ecosystems Endpoint, OS & Server Security Harden servers and VMs with patch baselines, encryption, EDR/XDR, LSASS protection, PAWs, and conditional access Implement secure communications over Kerberos, LDAPS, and certificate-based trust Integration & Collaboration Integrate directory services with IT, IAM/PAM platforms, PKI, authentication systems, and enterprise applications Partner with Cloud, Security Engineering, and Infrastructure teams on modernization and resiliency efforts Modernization & Strategic Initiatives Lead cloud-native directory strategies, domain consolidation, and migration initiatives Provide architectural guidance for enterprise security programs and automation