Senior Lead Directory Services Engineer
NBCUniversal
full-time
Posted on:
Location Type: Remote
Location: Remote • Florida • 🇺🇸 United States
Visit company websiteSalary
💰 $160,000 - $190,000 per year
Job Level
Senior
Tech Stack
AzureCloudCyber SecurityDNSFirewallsLinuxUnix
About the role
- Lead and advance enterprise directory infrastructure across on-premise, hybrid, and cloud environments
- Oversee Microsoft Active Directory, Entra ID/Azure AD, LDAP directories, Ping Directory, and RadiantOne VDS
- Ensure uptime, security, replication integrity, and modernization of identity platforms
- Design, secure, and maintain Active Directory, Entra ID/Azure AD, LDAP, Ping Directory, and RadiantOne VDS
- Manage domain controllers, server builds, storage integration, replication roles, and monitoring
- Oversee DNS/DHCP integration, site topology, failover, and global uptime
- Implement forest/domain architecture, OU models, replication topology, and delegated access
- Apply Tier 0 protections, MFA integration, privileged access separation, and credential hardening
- Lead Group Policy design and enforcement for security baselines, login policies, TLS/LDAPS, firewall controls, encryption, and device posture
- Oversee provisioning and synchronization of users, groups, service accounts, and privileged identities
- Harden servers and VMs with patch baselines, encryption, EDR/XDR, LSASS protection, PAWs, and conditional access
- Integrate directory services with IT, IAM/PAM platforms, PKI, authentication systems, and enterprise applications
- Lead cloud-native directory strategies, domain consolidation, and migration initiatives
Requirements
- 5+ years in a senior or lead role in IAM, directory services, security engineering, or infrastructure security
- Expert-level experience with AD domain controllers, replication, DNS/DHCP, FSMO roles, and site topology
- Advanced proficiency with Entra ID/Azure AD, Azure AD Connect, federation, and synchronization
- Strong LDAP knowledge, including schema modifications, Ping Directory, and RadiantOne VDS
- OS security hardening across Windows Server, Linux/Unix, and mixed enterprise platforms
- Strong networking fundamentals (VLANs, segmentation, firewalls, routing, VPN/site links)
- Experience designing and managing Group Policies at scale
- Demonstrated leadership in strategic programs or enterprise-scale transformations
- Bachelor’s degree in IT, Computer Science, Cybersecurity, or equivalent experience
Benefits
- Medical insurance
- Dental insurance
- Vision insurance
- 401(k)
- Paid leave
- Tuition reimbursement
- Variety of other discounts and perks
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
Active DirectoryEntra IDAzure ADLDAPPing DirectoryRadiantOne VDSDNSDHCPGroup PolicyOS security hardening
Soft skills
leadershipstrategic program managementcommunication
Certifications
Bachelor’s degree in ITBachelor’s degree in Computer ScienceBachelor’s degree in Cybersecurity