AD Security & Authentication Engineer
Cloudicagroup
Overview We’re seeking an Active Directory Security & Trust Engineer for a US-based project focused on AD hardening and trust remediation in large, multi-forest enterprise environments. You’ll strengthen authentication, apply tiering models, and implement modern security controls to align with best practices and CIS standards. Responsibilities Analyze multi-source security data (Splunk) to assess and execute Active Directory domain hardening and trust/security improvements. Implement and tune tiering policies (Tier-0/1/2) and restrictive GPOs; remediate risky privileged access, cross-tier logons, and privileged group exposures. Manage and optimize Active Directory trust relationships, including mapping cross-domain usage, identifying app/service dependencies, and implementing trust removals or conversions to one-way/selective authentication. Align Domain Controllers with CIS baseline security standards, including encryption protocols and authentication methods; migrate away from legacy encryption (e.g., RC4) and reduce NTLMv1 usage. Collaborate with domain and application owners to assess risks, plan change windows, validate remediation and trust changes, including fallback plans if needed. Produce clear, actionable remediation plans and reports, track progress in SIEM and spreadsheets, and support verification and change management processes. Qualifications 4 years of experience in enterprise Active Directory engineering with strong focus on security hardening and trust/authentication management in multi-forest environments (over 50,000 identities). Practical experience interpreting reports, Splunk logs and trust authentication paths. In-depth knowledge of GPO, OU, privileged access models (Tier-0/1/2). Strong understanding and working knowledge of authentication protocols including Kerberos, NTLM, encryption modes (RC4 vs AES), selective authentication, SID filtering, and constrained delegation. PowerShell proficiency for querying, reporting, and automation of AD tasks. Excellent communication skills to liaise effectively with technical teams, application owners, and management. Nice to have: Hands-on experience with PingCastle and CrowdStrike tools. What we offer Opportunity to work with modern technologies. A friendly work environment within a team of professionals. Training and development in Microsoft solutions and security systems. Growth through collaboration with a U.S.-based client and exposure to enterprise-scale security operations. Hands-on learning of advanced tools such as CrowdStrike and PingCastle. A rewarding and transparent commission system. Sports package and private medical care. #J-18808-Ljbffr Cloudicagroup
$165k - $185k
...About the Role Betterment is hiring a Sr. Security Engineer, Corporate Information Security to be a... ...Design: Lead initiatives across authentication, authorization, federation, and privileged... ...dental, and vision coverage; life and AD&D insurance; short- and long-term disability...SuggestedTemporary workFor contractorsSummer holidayWork at officeLocal areaFlexible hoursBetterment
New York, NY2 days ago$165k - $242k
...Senior Security Engineer, Enterprise Security CoreWeave is The Essential Cloud for AI™. Built... ...hardware security keys, device-bound authenticators, step-up authentication). ~... ...experiences that remove friction instead of adding gates, and you think deeply about usability...SuggestedTemporary workFor contractorsRemote workFlexible hoursCoreWeave
New York, NY2 days ago- ...Job Title: Principal Engineer, Linux Authentication & Security Location: New York, Hybrid working. Compensation: Highly competitive compensation including generous bonus and benefits. The Opportunity: Join one of the world's most successful quantitative investment...Suggested
Elliot Partnership
New York, NY2 days ago $125k - $150k
...Security Engineer Boston or New York KKR is a leading global investment firm that offers... ...security principles, concepts, and methods (authentication, authorization, single sign-on, network... ...knowledge of Windows (including AD) and Linux Knowledge of SSL/TLS traffic...SuggestedLocal areaRemote workKKR
New York, NY4 days ago$135k - $200k
...The Role As a Senior Identity Security Engineer on Palantir's Identity Security team, you... ...controlled workload onboarding Architect authentication, federation, and authorization systems... ...covered by Palantir's basic life, AD&D and disability insurance • Commuter...SuggestedWork experience placementWork at officeRemote workWork from homeRelocation packageShift workPalantir Technologies
New York, NY1 day ago$41k
...Senior Security Engineer — AI-Led Banker Workstation & Mobile Platform (Citi IB) Own security... ...and desktop, with emphasis on offline authentication/MFA, encrypted offline data, headless CRM... ...aligned to Citi IAM (EPF/SSO/AD and MFA/BIND ID), including token lifecycle...Full timeFor contractorsLocal areaRemote workPhoton
New York, NY5 days ago- Cybersecurity/Info Security Engineer (Remote- 130K) Title: “Cybersecurity/Information Security... ...security monitoring (SIEM), enterprise authentication and authorization. Plan and execute... ...changes (e.g., new technologies being added to the environment or that are undergoing...Remote job
- ...Job Title: Security Engineer/Architect - IAM Duration: 12+ Months (Possible extension)... ...usage). Configure Conditional Access, Authentication Strengths, and token controls; manage role... ...& Access: Microsoft Entra ID (Azure AD), PIM, Conditional Access, Authentication...
Veterans Sourcing Group, LLC
New York, NY3 days ago - ...Senior Security Engineer – Cloud & Data Security New York, NY About the Role Sigma is... ...through strict network segmentation, authentication, and authorization across our cloud environments... ...and 1.1 million new active users added in the latest fiscal year. Come...Full timeWork at officeFlexible hours
Sigma Computing
New York, NY4 days ago $150k - $200k
...Senior Security Engineer - Application Security New York, NY About the Role This is an opportunity to join K's critical InfoSec... ...cultivate an environment where everyone can bring their most authentic self to work. We depend on our differences to make our team...Full timeWork at officeLocal areaK Health
New York, NY1 day ago- ...London offices. You'll own application security at a company where the app layer is the... ...the safe path the easy path for 50+ engineers Threat models for new features and architecture... ...modern web frameworks, APIs, and authentication patterns well enough to threat model...Work at officeRemote workRelocation packageShift work
Mercor Alabaster
New York, NY4 days ago $167.5k - $226.3k
...Senior Security Engineer (AI Security) New York, New York Apply Who We Are At Justworks, you’ll enjoy a welcoming and casual... ...culture, and life experience is the norm and is celebrated authentically and respected consistently. Diversity in our work, our people...Casual workWork at officeLocal areaJustworks
New York, NY2 days ago$100k - $140k
...keep reading - this may be your next great opportunity. As a Security Engineer, you will be part of BlackCloak’s internal technology team supporting... ...Plan 10 Paid Company Holidays 100% employer‑paid Life, AD&D and Short‑and‑Long‑Term Disability Insurance 401k with...Full timeTemporary workRemote workHome officeFlexible hoursShift work$230k - $385k
...About the Team Security is at the foundation of OpenAI's mission to ensure that artificial... ...Role OpenAI is seeking a Security Engineer to join our Infrastructure Security (... ...security, orchestration security, and authentication/authorization. Strong analytical...OpenAI
New York, NY2 days ago- ...Hear from our employees directly on our Glassdoor page! Security Engineering @ Clay We're building a modern security organization... ...patches. Build frameworks and reusable components for authentication, authorization, and secure-by-default patterns. Define...Flexible hours
Clay Labs
New York, NY3 days ago - ...Genetec Security Engineer The Department of Social Services (DSS) is comprised of the administrative units of the New York City Human Resources... ...with camera and encoder provisioning in Genetec, including adding and replacing devices, firmware coordination, and validating...Full timeFor contractorsShift work
New York City | Technology, Data & Innovation
Brooklyn, NY1 day ago $98.9k
...What you can expect The Security Engineer is responsible for security design and reviews across our products and services. The ideal... ...architecture design/configuration, recommend changes or enhancements (authentication, authorization, network segmentation, container...Work at officeRemote workZoom Corporation
New York, NY1 day ago$10k
...do it. About the Role The Product Security team helps make Ramp the most secure... ...Security powers Ramp's growth Check out our Engineering Blog for more on our tech stack, mission... ...coverage through Sun Life • Life, AD&D, and disability coverage • Fertility...Full timeWork at officeHome officeRelocation packageFlexible hoursRAMP
New York, NY4 days ago- ...About the Role: We're looking for a Security Engineer who is equally at home hardening a CI/CD pipeline, reviewing a change to the authentication system on the backend, and triaging a bug bounty submission before lunch.This is a hands-on, builder-first role - not...Work at office
Etherfi
New York, NY2 days ago $200k - $250k
...Engineering • New York, New York • In-office Apply Refer someone Apply... ...trust that the platforms they rely on are secure, compliant, and resilient. That's where... ...~ Deep understanding of identity and authentication protocols (OAuth, SAML, OIDC) ~ Practical...Work at officeShift workProfound
New York, NY5 days ago$50 per hour
...Our client is seeking a skilled Security Engineer with strong hands-on experience in SIEM platforms and a solid IT/Security background. This... ...ensure compliance with best practices. Support hybrid Azure AD and cloud security initiatives, including Azure fundamentals...The Right Click, Inc.
New York, NY5 days ago- ...Security Engineer On behalf of our client, Procom Services is searching for a Security Engineer for a contract opportunity in New Jersey... ...AJAX, JSON, and web scanning tools Knowledge of: Strong Authentication, End Point Security, Internet Policy Enforcement, Firewalls...Contract work
Procom
Jersey City, NJ4 days ago $200k - $300k
...growing companies. The Team The Engineering team builds the core systems and... ...operate in high-stakes environments where security, reliability, and data integrity are critical... ...securing production systems, including authentication, authorization, and data protection #...C R O S B Y
New York, NY3 days ago$150k - $250k
...Hudson River Trading (HRT) is seeking a curious, innovative Security Engineer to join our Enterprise Security team and help safeguard the... ...or agreed upon. We employ various methods to evaluate the authenticity of candidate responses. If we determine that AI assistance...Work at officeLocal areaImmediate startHudson River Trading
New York, NY5 days ago- ...Information Security Engineer IV The Information Security Engineer IV is a key member of the... ...changes (e.g., new technologies being added to the environment or that are... ..., encryption technologies, enterprise authentication (e.g., SAML/SSO, Active Directory, etc...Full time
Dechert
New York, NY4 days ago $180k - $220k
...compensation types Stock options Product Security Engineer We are hiring a Product Security... ...fix real production issues related to authentication, access, and runtime behavior. Establish... ...only scripts or wrappers. Experience adding enforcement into CI and CD such as...Full timeRemote workVisa sponsorship- ...Senior Level Mis Security Position Senior level MIS Security position with a primary responsibility resolving security-based... ...operating systems and its security (server and workstation), authentication Ad and AAD, authentication methods, networking, email security,...Work at office
Pivotal Solutions Inc
New York, NY1 day ago $145k - $200k
...Information Security Engineer Focused on Windows and Active Directory Palantir builds the world... ...hold. Reduce attack surface across AD: audit and remediate misconfigurations,... ...Users, LAPS, Credential Guard, and authentication policy silos. Translate findings from...Work experience placementWork at officeRemote workWork from homeRelocation packagePalantir Technologies
New York, NY3 days ago$165k - $242k
...Learn more at What You'll Do: The Security Foundations organization at CoreWeave keeps... ...the confidentiality, integrity, and authenticity of CoreWeave's data and systems: PKI, secrets... ...About the Role: As a Senior Security Engineer on the PKI & Secrets team, you will...Permanent employmentTemporary workCasual workWork at officeFlexible hoursCoreWeave
New York, NY22 days ago$163.94k - $215.18k
...Job Description Hi, we're Oscar. We're hiring a Senior Security Engineer 1, GRC to join our Security Team. Oscar is the first health... ...automation or internal security tooling. This is an authentic Oscar Health job opportunity. Learn more about how you can safeguard...Full timeWork at officeFlexible hoursOscar Health
New York, NY15 days ago
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to AD Security & Authentication Engineer. Be the first to apply!
- security infrastructure engineer New York, NY
- senior cloud security engineer New York, NY
- azure security engineer New York, NY
- senior application security engineer New York, NY
- lead security engineer New York, NY
- physical security engineer New York, NY
- security engineering manager New York, NY
- endpoint security engineer New York, NY
- cyber research engineer New York, NY
- sr information security engineer New York, NY