U.S. Bank

Principal Systems Engineer, Microsoft Active Directory Domains

U.S. Bank

full-time

Posted on:

Location Type: Hybrid

Location: Hopkins • Illinois, Minnesota, Ohio, Oregon • 🇺🇸 United States

Visit company website
AI Apply
Apply

Salary

💰 $119,765 - $140,900 per year

Job Level

Lead

Tech Stack

AnsibleAWSAzureCloudDNSFirewallsGoJenkinsKubernetesPythonTCP/IPTerraform

About the role

  • Manages large Microsoft Active Directory Domains.
  • Defines and implements schema requirements.
  • Manages Active Directory Group Policy Objects.
  • Installs and upgrades directory server products.
  • Evaluates and provides recommendations of current directories for capacity, network, security and disaster recovery.
  • Performs backup and recovery procedures for the directories.
  • Maintains support and design documentation.
  • Provides technical support to other support personnel and end users.
  • Provides rotating 24x7 on-call group support, responds to incidents.
  • Participates in incident problem resolution root cause efforts.
  • Participates in Audits and Disaster Recover exercises.
  • Collaborates with Project Manages, System Integrators to provide project support.
  • Works with Information Security personal.
  • Understands Change Management procedures.

Requirements

  • Bachelor’s degree, or equivalent work experience
  • At least 7 years of experience within a total information technology (IT) environment
  • At least 7 years of experience with the design, development and support of technology infrastructure
  • Experience designing and supporting complex enterprise infrastructure environments.
  • Strong experience with automation and scripting or programming languages (e.g. PowerShell, Python, Go, Bash).
  • Experience applying software development practices to infrastructure (CI/CD, Git, testing pipelines).
  • Software & Automation : Experience with Infrastructure as Code (Terraform, Ansible, etc.).
  • Experience building automation services or internal tools.
  • Familiarity with REST APIs and service integration patterns.
  • CI/CD tools: GitLab CI, Jenkins, Azure DevOps, GitHub, etc.
  • Cloud & Platform Engineering : Experience in Azure or AWS (Identity, networking, compute, IAM, platform services).
  • Knowledge of Kubernetes, containers, or modern platform services.
  • Familiarity with service meshes or API gateways.
  • Identity & Security Engineering : Deep experience with Active Directory, LDAP, Kerberos, Azure AD / Entra, IAM concepts.
  • Experience with SSO, MFA, identity federation, and modern authentication models (OIDC, OAuth).
  • Understanding of Zero Trust, PKI, and enterprise security practices.
  • Infrastructure & Networking : Strong understanding of networking fundamentals (DNS, TCP/IP, load balancing, firewalls).
  • Experience with HA/DR design, resilience engineering, and disaster recovery planning.
Benefits
  • Healthcare (medical, dental, vision)
  • Basic term and optional term life insurance
  • Short-term and long-term disability
  • Pregnancy disability and parental leave
  • 401(k) and employer-funded retirement plan
  • Paid vacation (from two to five weeks depending on salary grade and tenure)
  • Up to 11 paid holiday opportunities
  • Adoption assistance
  • Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
Microsoft Active DirectoryGroup Policy ObjectsPowerShellPythonGoBashTerraformAnsibleCI/CDKubernetes
Soft skills
technical supportcollaborationincident resolutiondocumentationchange management