Active Directory Administrator

Manila City, Metro Manila Muntinlupa City, Metro Manila
Permanent
Full-time

1 month ago

✅ Position Overview:We are looking for a highly skilled Active Directory Administrator / Lead to manage, secure, and optimize our hybrid identity infrastructure. This role is central to ensuring seamless authentication, governance, and compliance across global environments. The ideal candidate has strong technical leadership in both on-premises Active Directory and Azure AD, backed by scripting and security expertise.🛠️ Primary Technical Abilities:Active Directory (On-Prem):Forest, domain, and OU design and maintenanceTrust relationships, replication strategies, FSMO rolesGroup Policy creation, management, and troubleshooting (GPMC, gpresult)Azure Active Directory & Hybrid Identity:Azure AD Connect, ADFS, SSO, PTA, PHSHybrid join management and Azure identity lifecycleAzure B2B/B2C integration and external identity controlSecurity & Hardening:Tiered administration, securing domain controllersMFA, Conditional Access Policies, RBACMonitoring with Microsoft Defender, Semperis, SIEM toolsPowerShell & Automation:Scripting for bulk user management, cleanup, reportingGraph API and Azure Automation workflowsTask Scheduler, backup scripting, alerting integrationsBackup & Disaster Recovery:Authoritative/non-authoritative restore using Veeam, Windows Server Backup, Semperis ADFRAudit log tracking, replication troubleshootingCompliance & Governance:Alignment with ISO 27001, GDPR, NISTAccess review and identity-based risk mitigationIdentity & Access Management (IAM) with PIM, CAPs, and RBAC💡 Secondary Technical Abilities:Windows Server (2012–2022): AD DS, DNS, DHCP, file systemsAdmin tools: ADUC, RSAT, ADSI Edit, Windows Admin CenterFamiliarity with Microsoft Intune, Endpoint Manager, and Hello for BusinessKnowledge of virtualization: VMWare, Hyper-VExposure to network integration: Palo Alto, Cisco switches🤝 Behavioral Abilities:5–7 years in Identity & Access Management3+ years as a Tech Ops Lead for AD/Azure AD operationsExcellent verbal/written communication in EnglishSelf-starter, team collaborator, analytical mindsetComfortable in high-level escalations and L3 technical troubleshootingWilling to travel when required🧪 Preferred Certifications:SC-300: Identity and Access Administrator AssociateSC-900: Security, Compliance, and Identity FundamentalsAZ-305: Azure Solutions Architect Expert (preferred)🖥️ Technical Environment:Active Directory / Azure AD, ADFS, PIM, Defender for IdentityPowerShell, Graph API, Windows Admin CenterVMWare, Nutanix, Windows Server 2012–2022Semperis, Veeam, Microsoft 365, CA Service Desk

GECO Asia

Apply Now