3,032 Active Directory jobs in the United States

Be part of a team that unleashes the power of leading-edge technologies to help improve the health and well-being of those most vulnerable in our country and communities. Working at Gainwell carries its rewards. You'll have an incredible opportunity to grow your career in a company that values work flexibility, learning, and career development. You'll add to your technical credentials and certifications while enjoying a generous, flexible vacation policy and educational assistance. We also have comprehensive leadership and technical development academies to help build your skills and capabilities.

Summary

We are seeking a skilled and experienced Active Directory Engineer to design, implement, manage, and support our Active Directory (AD) infrastructure. This role involves maintaining the integrity, security, and efficiency of AD services, supporting identity and access management, group policy objects (GPOs), and hybrid integrations with cloud services like Azure AD.

Your role in our mission

• Design, deploy, and maintain Active Directory environments, including domains, forests, and trusts
• Manage Group Policy Objects (GPOs), Organizational Units (OUs), and user/computer account lifecycle
• Implement and support hybrid identity solutions (Azure AD Connect, ADFS, Azure AD SSO, etc.)
• Perform routine maintenance, upgrades, patching, and performance tuning of domain controllers
• Ensure Active Directory security through least-privilege access, auditing, and authentication policies
• Support DNS, DHCP, and certificate services related to Active Directory
• Monitor, troubleshoot, and resolve AD-related issues (replication, authentication, etc.)
• Maintain documentation of configurations, processes, and policies
• Collaborate with security and infrastructure teams to support enterprise initiatives
• Participate in disaster recovery planning and testing for AD infrastructure
• Provide Tier 3 support for Active Directory-related incidents and service requests

• 5+ years of experience managing enterprise Active Directory environments
• Deep understanding of AD architecture, replication, trusts, and schema management
• Proficient in PowerShell scripting and automation
• Experience with Azure AD, ADFS, and hybrid identity integration
• Familiarity with IAM concepts, Kerberos, LDAP, and NTLM
• Strong troubleshooting and analytical skills

• Fast-paced, challenging and rewarding work environment.
• Remote work opportunity within US.
• Video cameras must be used during all interviews, as well as during the initial week of orientation.
• The Deadline to submit applications for this posting is September 21, 2025.

Must have skills:

1. Managing Active Directory Operations
2. Managing Group Policy with complex Inheritance, Precedence and Enforcement
3. Working with the client's enhanced security On-prem AD domains, monitoring AD replication and resolving any replication issues
4. Using PowerShell/Visual Studio Code for troubleshooting and all other scripting needs
5. Ability to follow existing SOPs and to create new ones

• Working with the client's enhanced security On-prem AD domains
• Working with the client's Azure AD tenants
• Configuring and managing privileged access (PAM) and access models
• Upgrading and migrating AD physical and virtual servers
• Using PowerShell/Visual Studio Code for troubleshooting and all other scripting needs
• Managing Group Policy with complex Inheritance, Precedence and Enforcement
• Evaluating current environment and clean-up of un-needed AD objects
• Collaborating with IT teams to build out any new servers required

• Extensive Active Directory experience and Azure exposure
• High-level PowerShell scripting skills, proven ability to read and modify existing complex automation scripts and modules as well as script from scratch
• Previous experience in large, enterprise environments (more than 1,000 servers)
• Experience working in a multi-team environment across multiple geographies
• Ability to follow and enforce strictly defined security standards and processes. Familiarity with Change, Incident, Problem and Service management.
• Natural leadership and mentoring abilities
• Ability to work easily with people of different backgrounds

• Expert level knowledge with supporting, managing, and implementing Microsoft Active Directory with multiple trusted and untrusted Domains
• 10+ years dedicated to Microsoft enterprise software and platforms
• High level knowledge with supporting, managing, and implementing Microsoft Active Directory Federation Services. (ADFS) as well as Azure Cloud Services
• Proficiency in VBScript or Power Shell
• 5+ years technical leadership responsibilities
• Thrives in a highly regulated and very dynamic environment
• Must have significant Active Directory Design and Troubleshooting Knowledge as well as experience dealing with Domain Controller issues
• Must have significant experience with Group Policy processing and troubleshooting across various computing platforms including servers, web servers, desktops etc.
• The candidate will provide daily support for Semperis and Cay soft applications. (Directory Service Protector, Active Directory Forrest Recovery, Cay soft Administrator Suite)
• This position will provide 24/7 coverage for Corporate Active Directory Support.
• The candidate must have proven End User interaction with various End Users and able to maintain ticket SLA's for responding to User Requests promptly.
• Expertise in Windows desktops and Servers and other Microsoft technologies Troubleshooting skills is a daily requirement. (Windows 10, Windows Server 2012R2 and 2016)
• The position will be required to follow and create documentation, and follow Sr. Engineering guidance for implementing changes on systems requiring Active Directory integration

• Needs to be within an hour drive of Abbott Park, IL. If not, please note their plan on relocation .

• Troubleshoot devices, applications, and configurations via phone and remote access.
• Manage day-to-day operations of engineering solutions including hardware/software support, documentation, and special projects.
• Communicate effectively with customers, peers, and leadership regarding incidents, changes, and ongoing initiatives.
• Provide on-call emergency support on a rotating schedule.
• Test, implement, and validate new features and technologies in live environments.
• Collaborate with cross-functional teams to optimize processes and define best practices.
• Maintain technical documentation and knowledge base entries.

• VMware vSphere, Horizon, VDI management, SAN/storage, NSX, vSAN, SRM, Cisco UCS/Nexus, EMC Avamar, Nutanix.
• Microsoft technologies: Active Directory, GPO, DNS, Exchange, SQL, Azure/Entra ID, licensing models.
• Networking: TCP/IP, OSI model, enterprise/virtual networking.
• Operating systems: Windows, *nix.
• Strong troubleshooting across servers, networks, and backup solutions.

• Bachelor's degree or equivalent/military experience.
• MCSE and Microsoft 365 certification required.
• 3+ years of Microsoft engineering experience.
• Strong problem-solving, communication, and customer service skills.
• Ability to work in fast-paced, high-pressure environments with multiple priorities.
• Passion for continuous learning and professional growth.

• Operationally manage Active Directory infrastructure of multiple Active Directory environments.
• Review, investigate, and remediate any AD performance irregularities identified by the management and monitoring tools.
• Work with the business and application teams to increase the security of the Active Directory environments by remediating identified security vulnerabilities.
• Leverage security scanning tools to monitor and maintain the Active Directory environment to the published baseline security standards.
• Work with the business and application teams to migrate their applications to the Client core AD environment or Client cloud environment.
• Move the Active Directory environment towards consolidation.
• senior Active Directory engineer or architect that has extensive experience working on domain integration / migration projects, extensive familiarity with the tools / products listed below to manage and maintain multiple separate Active Directory infrastructures.
• Ideal candidate will have extensive experience working with the business partners and application teams to prepare them to increase the security of their utilization of Active Directory resources and migrating their application to the Client core AD or cloud environment as part of the Active Directory domain consolidation efforts.
• healthcare specific background specific industry experience is ideal candidate.

A Large Media Client is seeking an Active Directory Engineer (Junior - Mid Level) to join their Identity Access Management Engineering team. Tis role will focus on the design, implementation, and management of the secure Active Directory (AD) services across a globally distributed enterprise environment. The Engineer will lead enhancements to AD security, including risk assessments, secure configurations, monitoring, and automation. A key responsibility in this role is collaboration with the InfoSec teams and cross-functional stakeholders to develop and integrate access management solutions.

Key Responsibilities;
• Creating, modifying, and disabling user accounts
• Managing group memberships and understanding group scopes (global, universal, domain local)
• Organizational Unit (OU) Navigation
• Understanding AD structure and moving objects between OUs
• Applying basic Group Policy Objects (GPOs) at the OU level
• Password and Account Policies
• Resetting passwords, unlocking accounts, and enforcing password complexity
• Familiarity with account lockout thresholds and expiration settings
• Basic Troubleshooting
• Diagnosing login issues, replication delays, and DNS-related problems
• Using tools like Event Viewer, Active Directory U and Computers (ADUC), and RSOP.msc
• Security Awareness
• Understanding least privilege principles
Recognizing the importance of disabling unused accounts and avoiding shared credentials

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:

Required Skills & Experience

Experience in Active Directory (AD) and working knowledge of tools currently available to support AD.
Experience of Active Directory Group Policy Objects (GPO) and OUs.
Understanding of basic networking concepts
Deep technical understanding of MS Active Directory Domain Services.
Server hardware experience, out-of-band management and patching.
Knowledge of password vault solutions, JITA access and virtualization: Netwrix, CyberArk, Hyper-V.
Experience creating and maintaining architecture diagrams, design diagrams and data flow diagrams using Microsoft Visio or other equivalent tools

Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.

• Engineering, deploying, operationalizing, maintaining, and supporting tools associated with AD.
• Contributing to the engineering and support of AD as needed.
• Communicating service directions, features, and roadmaps.
• Providing technical leadership and guidance.
• Assisting with currency and patching of AD systems.
• Liaising with and supporting operational teams.
• Participating in incident response for AD platforms as needed.
• Assisting in technology evaluations and proof of concept projects.
• Contributing to disaster recovery planning and remediation of vulnerabilities within AD.
• Making recommendations for improving and securing the AD environment.
• Providing IAM strategy recommendations.

• Senior-level AD Engineer with 5-7 years of experience .
• Experience in large enterprise environments .

• 5+ years in directory services engineering.
• 2+ years in IAM strategy development.
• Manufacturing industry experience.
• Strong understanding of AD security principles.
• Experience with implementing and maintaining AD tools, including:
  • Microsoft ATA/AATP/Defender for Identity.
  • Microsoft ADRES (Active Directory Recovery Execution Service).
  • Quest Tools (Change Auditor, Recovery Manager, Enterprise Reporter, Migration Manager).
  • Other equivalent AD management tools.
• Familiarity with supporting SOC processes , recovery testing, AD continuity, and disaster recovery.
• Experience with AD security capabilities:
  • Microsoft Defender Credential Guard.
  • Kerberos and NTLM protocols.
  • Group Policy Preferences administration.
  • Domain Controller communications and security.
  • Ransomware defense for directory services.

• Excellent interpersonal and communication skills in English (both written and spoken).
• Strong organizational skills with attention to detail.
• Strategic thinking balanced with a detail-oriented mindset.
• Team player, able to collaborate both in person and virtually (MS Teams or similar).
• Self-starter with the ability to take initiative.
• Flexibility to work across different time zones.

• Experience with SAP Access Control .
• Certifications such as CISSP , CISM , or equivalent are a plus.

• Must be local to Chicagoland areas and willing to work on-site as needed.
• Must have excellent presentation and consulting/delivery skills
• Prefer Healthcare experience

• Deep understanding of Microsoft Active Directory and network protocols.
• Maintain optimize and troubleshoot Active Directory architecture and Group Policy Objects.
• Collaborate on AD integrations with InfoBlox, ensuring alignment with DNS and IPAM strategies.
• Design and implement AD schemas to meet InfoBlox project requirements.
• Implement best practices for secure DNS/DHCP configuration and management.
• Provide technical expertise during migration and upgrade of InfoBlox services.
• Diagnose and resolve Active Directory and InfoBlox related items.
• Monitor system health, performance, and compliance with security protocols.