Active Directory Engineer

Insight Global

Dunwoody Chace, Sandy Springs, GA 30328, USA

Published: 6/14/2022

Technology

Full Time

Job Description

We’re looking for a Senior Engineer with strong expertise in Active Directory (AD) and Windows administration and Cyberark this engineer is responsible for the support of a strategic initiative aimed at reducing privileged access risk. This role combines technical remediation and business analysis, leveraging CyberArk, Windows/Active Directory, and privileged access governance to execute end to end removal of local administrator accounts. The Engineer will lead account discovery, remediation, and stakeholder coordination to enhance security posture and ensure compliance readiness. The ideal candidate will eliminate local admin accounts, onboard functional and JIT accounts into CyberArk, document ownership and dependencies, and deliver executive level reporting that demonstrates measurable risk reduction.

Requirements:

· 7+ years of experience working in Active Directory Management, AD Replication, GPO, trusts, DNS and DHCP

Hands‐on experience with CyberArk Privileged Access Security (onboarding, vaulting, JIT/ZOA policy configuration).

· Strong knowledge of Windows Server administration, Active Directory, and local admin privilege management.

· Demonstrated ability to perform business analysis, including gathering requirements, validating account dependencies, and documenting access justification.

· Excellent troubleshooting skills with strong communication and documentation abilities.

· Familiarity with compliance frameworks such as SOX and audit readiness requirements.

· 7+ years in writing advanced, efficient, and well-structured PowerShell , Python or shell scripts

· 4+ years working with CyberArk products

· 3+ years working and driving large scale security initiatives in an enterprise environment

Other Requirements (Should‐haves)

· CyberArk certification (Defender, Sentry, or Guardian).

· Microsoft/Cloud certifications

· M365 administration

· Experience supporting large-scale IAM/PAM remediation initiatives.

· Background in security operations, Infrastructure security, or security architecture.

· Strong knowledge of networking fundamentals (TCP/IP, DNS, VPN, firewalls) and operating systems