Sr. Active Directory Engineer (with CyberArk)

Blackstone Talent Group, an award-winning technology consulting and talent agency is seeking a highly-skilled Sr. Active Directory Engineer to join our to support a leading banking client engaged in enhancing its security posture within its federated AD environments. The ideal candidate will have extensive experience managing complex AD environments, domain controllers, AD forests, and Active Directory Federation Services (ADFS), particularly in financial services.

Position Details:

Location: Lowell, AR (100% Remote)

Type: 12 Month Contract (NO C2C)

Interview Process:

1) Phone/Zoom initial screen

2) Potential for second round with broader team (2 or 3 persons) via zoom

MUST HAVES:

1) 4 years of experience designing and implementing CyberArk IAM/PAM solutions

2)Experience configuring domain controllers

3) Experience managing Active Directory forests

4) Experience extending AD schemas/raising AD forests, working in complex AD environments

5) Experience in Banking/Financial Services industry

6) Experience with ADFS (ADFS experience is a plus)

Responsibilities

• Work in complex, multi-domain, multi-forest environments,
• Analyze and remediate Active Directory security vulnerabilities identified in a cybersecurity audit.
• Implement security best practices across the AD infrastructure, ensuring compliance with banking and financial industry regulations.
• Triage Active Directory domain controllers, as required, ensuring their security, redundancy, and operational efficiency.
• Refactor Active Directory forests, including schema extensions and forest upgrades, as required to ensure audit compliance.
• Implement and/or modify group policy updates, access controls, and role-based access models to mitigate security risks.
• Enhance AD monitoring, logging, and auditing capabilities to support security and compliance efforts.
• Collaborate with cybersecurity, infrastructure, and compliance teams to ensure AD security aligns with corporate policies.
• Provide expertise in Active Directory Federation Services (ADFS) and related identity federation technologies.
• Ensure compliance with NIST, ISO 27001, FFIEC, SOX, and other financial security frameworks, as required by client and/or audit requirements.

Required Experience

• 5 years of experience managing Active Directory (AD) environments in enterprise settings.
• 2 years’ experience implementing AD solutions within banking/financial services environments.
• Deep expertise in Active Directory security, architecture, and administration.
• Proven experience in remediating AD security risks and implementing security controls.
• Strong knowledge of domain controllers, AD forests, AD trusts, and Group Policy.
• Experience with AD schema extensions, forest raises, and AD migrations.
• Hands-on experience managing complex AD environments in a banking or financial services institution.
• Knowledge of identity & access management (IAM) best practices in financial regulatory environments.
• Familiarity with Kerberos authentication, LDAP, SAML, and similar identity protocols.
• Strong understanding of PowerShell scripting for AD automation and security hardening.
• Experience working within SOX, PCI-DSS, FFIEC compliance frameworks.

Preferred Experience

• Microsoft Certifications (e.g., MCSE, Microsoft Certified: Identity and Access Administrator, Microsoft 365 Certified).
• Knowledge of Azure Active Directory (AAD) and cloud identity integrations.
• Experience implementing Zero Trust security models in AD environments.

Education

• Bachelor’s or Associate's Degree in related field or equivalent relevant experience required.

Blackstone Talent Group is a wholly owned subsidiary of Blackstone Technology Group, a global IT services and software firm that implements technological solutions across commercial industry verticals and the US Federal Government. Blackstone's global talent augmentation practice was founded in 1998. Blackstone Talent Group has offices in San Francisco, Denver, Houston, Colorado Springs, and Washington, DC. We specialize in providing clients the best talent across a variety of industries and sectors.

EOE of Minorities/Females/Veterans/Disabilities