Open app
Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Active Directory / Entra ID / IAM Engineer- HYBRID

Simple Solutions

New York, NY

Job Description

Job Description

Active Directory / Entra ID / IAM Engineer

Location: NYC, Jersey City, or Pittsburgh (2-3 days onsite)

Duration: 12-month engagement

Seeking an experienced Active Directory / Entra ID / IAM Engineer to support enterprise identity and access management services across production environments. This role is focused on maintaining and enhancing on-premises and cloud-based identity infrastructure, with deep emphasis on Active Directory, Microsoft Entra ID, hybrid identity operations, authentication services, and privileged access controls.

Key Responsibilities

  • Provide day-to-day engineering and operational support for enterprise Active Directory and Entra ID environments supporting large-scale global user populations.
  • Administer, harden, and support on-premises Active Directory infrastructure including domain controller build and maintenance, DNS (SRV records), LDAP, Kerberos, NTLM, GPO, OU structure, replication, and directory health.
  • Support Microsoft Entra ID administration including Conditional Access, MFA, Identity Protection, Privileged Identity Management (PIM), app registrations, and service principal governance.
  • Maintain and support hybrid identity environments including AD Connect configuration, sync operations, failover between data center instances, and PowerShell-based sync troubleshooting.
  • Administer PKI infrastructure including certificate authority management, certificate lifecycle, LDAP signing, and certificate installation on domain controllers and services.
  • Support authentication and access solutions including SSO, federation (SAML, OIDC, OAuth2), MFA, and privileged access controls.
  • Perform enterprise application onboarding and integration with identity platforms; troubleshoot authentication, authorization, and provisioning issues.
  • Execute platform hardening aligned with Microsoft cumulative hardening guidance and enterprise security policy — including SMB signing, LDAP signing, Kerberos enforcement, and legacy protocol disablement.
  • Support audit, compliance, and vulnerability remediation activities; respond to security findings from scanning tools such as Rapid7, Nessus, or CrowdStrike.
  • Partner with infrastructure, cybersecurity, and application teams to deliver identity-related changes and service improvements.
  • Develop and maintain runbooks, operational documentation, and support procedures; train follow-the-sun operations teams on repeatable workflows.
  • Participate in on-call rotations, after-hours change windows, and incident response including major incident bridge management.

  • Use PowerShell, Python, and Microsoft Graph / Entra APIs to automate operational tasks and improve efficiency.

Required Skills & Experience

  • 8+ years of hands-on experience administering and supporting enterprise Active Directory — including building, hardening, and directly owning domain controllers.
  • Knowledge of AD fundamentals: Kerberos and NTLM authentication protocols, DNS (SRV records), LDAP and LDAP signing, GPO design, replication, forest/domain architecture, and DC security hardening.
  • Strong experience with Microsoft Entra ID including Conditional Access, MFA, Identity Protection, PIM, app registrations, and service principal governance.
  • Hands-on experience with AD Connect in high-availability configurations including multi-data-center failover, sync troubleshooting, and PowerShell-based sync commands.
  • Experience supporting hybrid identity environments across on-premises Active Directory and Microsoft Entra ID.
  • Working knowledge of PKI infrastructure including certificate authority administration, LDAP signing, and certificate use cases on domain controllers.
  • Experience with IAM and PAM platforms such as SailPoint, Okta, and CyberArk.
  • Proficiency in PowerShell; Python and Microsoft Graph API experience preferred.
  • Experience with enterprise SIEM platforms (Splunk preferred) for log analysis, dashboard use, and incident triage.
Apply
Vacancy posted 5 days ago
Similar jobs that could be interesting for youBased on the Active Directory / Entra ID / IAM Engineer- HYBRID in New York, NY vacancy
  • Active Directory / Entra ID Customer Engineer

    $95k - $110k

     ...Overview We have immediate opportunities for an Active Directory / Entra ID Expert to join our growing Customer Engineer (CE) team. These are full-time roles with...  ...them to a healthy, secure identity posture across hybrid and cloud environments. What You Will Do On-Demand... 
    Suggested
    Full time
    Immediate start

    JDA TSG

    New York, NY
    1 day ago
  • Senior Entra ID & Active Directory Customer Engineer

    $95k - $110k

     ...JDA TSG is seeking an Active Directory / Entra ID Expert to join their Customer Engineer team in the United States. This full-time role involves conducting health assessments, facilitating workshops, and providing mitigation services. The ideal candidate has 15+ years... 
    Suggested
    Full time

    JDA TSG

    New York, NY
    1 day ago
  • Active Directory migration engineer Remote, USA

    $60 per hour

     ...Active Directory (AD) migration - Remote (PST Hours) - Synopsys - 10+ Years Exp The position...  ...candidates The position is for an experienced IAM Engineer (10+ years) specializing in Active...  ...to SSO/MFA platforms such as Okta and Entra ID, integrating systems with IGA tools... 
    Suggested
    Remote work

    Medhas Consulting Services UK Ltd

    New York, NY
    1 day ago
  • Senior Active Directory (AD) Engineer
     ...Koniag Government Services company , is seeking a Senior Active Directory (AD) Engineer to support KITS and our government customer in Carson,...  ...including the integration of Azure Active Directory (Entra ID) for hybrid cloud environments and Office 365. Security & STIG... 
    Suggested
    Work at office
    Local area
    Flexible hours

    Koniag Information Security Services, LLC

    Fort Lee, NJ
    1 day ago
  • Remote Entra ID IAM Engineer SSO, MFA & Access Governance
     ...Strategic Technology Partners, LLC is seeking an Entra ID / IAM Engineer to join our team remotely. In this role, you will design and implement identity management solutions, support secure access and controls, and ensure compliance aligned with Zero Trust Architecture... 
    Suggested
    Remote work

    Strategic Technology Partners LLC

    New York, NY
    1 hour ago
  • Senior Infrastructure Engineer - IAM & Automation

    $140k - $160k

     ...Senior Infrastructure Engineer - IAM & Automation At Polsinelli,...  ...This role can be performed hybrid or remotely, but candidates...  ...controls through Okta and Entra/Active Directory. Create, support, and maintain...  ...Directory and Microsoft Entra ID, including sync rules,... 
    Full time
    Temporary work
    Part time
    Remote work
    Flexible hours
    Shift work

    Polsinelli

    New York, NY
    4 days ago
  • Senior Active Directory - Cloud Identity Specialist
     ...Senior Active Directory - Cloud Identity Specialist Boston...  ...Lead architecture, engineering, and operations for Active...  ...and drive adoption of hybrid identity solutions...  ...working with Azure AD/Entra ID and hybrid identity (synchronization...  ...: Experience with IAM platforms such as Okta... 
    Work at office
    Shift work
    Day shift

    Bank of America

    Jersey City, NJ
    4 days ago
  • IAM Engineer (Secret clearance)

    $92k - $195k

     ...Vantor is seeking IAM Engineers to support mission requirements for a structured...  ...Integrate IAM solutions with Microsoft Entra ID (formerly Azure Active Directory), Public Key Infrastructure (PKI),...  ...), and identity federation across hybrid environments. Strong knowledge of... 

    Maxar Technologies

    New York, NY
    5 days ago
  • Active Directory Engineer@ NY, MA, IL, VA, TX | Hybrid
     ...Description: Team Info: Inventory apps connecting to Active Directory Understand where connections are coming Active...  ...Snowflake Role Info: Hands on Active Directory Engineer role withs strong Configuring, Log creations,... 

    PALNAR

    New York, NY
    2 days ago
  • Jr. IT Project Engineer - Hybrid
    Position Name: Junior Project Engineer Reports to: Project Engineer Team Lead Location/Type: Hybrid - New York, New York Status: Exempt Atlas...  ...Teams, Intune, Conditional Access) Entra ID (Azure AD), Windows Server, Active Directory, Group Policy File and email migrations... 
    Work at office

    Atlas Technica

    New York, NY
    5 days ago
  • HyperCare Consultant - Entra ID
     ...seeking a HyperCare Consultant (Entra ID), for our remote team working...  ...familiarity with both. We actively encourage our employees to pursue...  ...and upkeep of Active Directory via physical servers and Azure...  ...RBAC). Implement and support hybrid identity solutions, including... 
    Work at office
    Remote work

    CrucialLogics

    New York, NY
    1 day ago
  • SECURITY ENGINEER WITH IAM
     ..., and solving complex IAM related issues. Manage...  ...implement, manage and engineering support for PAM/IAM backend...  ...• Administer a hybrid multi-tenant Microsoft...  ...environment including Active Directory, Azure Active Directory...  ...architecture Azure AD/Entra ID, AWS, Salesforce • Provide... 
    Full time
    Work at office

    3B Staffing LLC

    New York, NY
    5 days ago
  • Principal Systems Engineer - IAM

    $184k - $230k

     ...Principal Engineer, Identity and Access Management At Early Warning...  ..., or New York follow a hybrid work model to allow for a more...  ...Identity and Access Management (IAM) team, you will play a...  ...privileged access management, active directory, and network protocols, you will... 
    Hourly pay
    For contractors
    Work experience placement
    Work at office
    Immediate start
    Visa sponsorship
    Work visa
    Flexible hours

    Early Warning Services

    New York, NY
    1 day ago
  • Windows Security Engineer - IAM
     ...Identity And Access Management Engineer New York, NY (Hybrid, 3 days in office) Highly competitive...  ...and Access Management (IAM) Engineer to join the Systems...  ...mainstream identity systems such as Active Directory, ADFS, ADCS, and Entra ID. Drive the integration of... 
    Work at office
    Remote work

    Elliot Partnership

    New York, NY
    4 days ago
  • IAM Engineer
     ...Minimum of 5 years of experience with Okta or similar IAM platforms. Knowledge of API usage and management....  ...Administrator, Okta Certified Consultant). Experience with directory services such as Active Directory, Entra ID and LDAP. Knowledge of IT security best practices and... 

    Nexus IT Group

    New York, NY
    1 day ago
  • CyberArk IAM Engineer

    $60 - $100 per hour

     ...contractor to support them with IAM solutions related to CyberArk...  ...5+ years experience in the engineering and administration of CyberArk...  ...knowledge of Microsoft Exchange and Active Directory. Hands-on experience with RBAC in Microsoft Entra ID. Good understanding of ITIL,... 
    Contract work
    For contractors
    Remote work

    Parallel Consulting

    New York, NY
    1 day ago
  • Active Directory Windows Engineer

    $130k - $225k

     ...Active Directory Windows Engineer Location New York Business Area Engineering and CTO Ref # 10047748 Description & Requirements...  ...equivalent work experience. We'd Love to See : Hybrid Identity: Hands-on experience with Azure AD, Azure AD Connect... 
    Temporary work
    For contractors
    Work experience placement
    Remote work

    Bloomberg

    New York, NY
    4 days ago
  • System Engineering In

    $150k - $200k

     ...The Role: As a foundational engineer on our Corporate Technology team,...  ...Identity and Endpoints: Administer our hybrid identity environment (Active Directory, Entra ID) and manage our fleet of company...  ...DNS/DHCP. Experience with modern IAM/IDP/MFA platforms is a plus.... 
    Work at office

    Summit Securities Group

    New York, NY
    4 days ago
  • Senior Cloud & Systems Engineer - New York City
     ...a seasoned Sr. System Engineer - Onsite to serve as the...  ...Azure (IaaS, PaaS, hybrid architectures) - Azure...  ...SharePoint, OneDrive, Intune, Entra ID, Teams Calling ~...  ...including Active Directory, Group Policy, DNS, DHCP...  ...and access management (IAM) including Entra ID policy... 
    Full time
    Temporary work

    Portfolio BI

    New York, NY
    3 days ago
  • Active Directory Consultant
     ...ctive Directory Consultant Location: NY, NY 10014 Duration...  ...84 months of experience with Active Directory Authentication and...  ...Federation/SAML, OAuth, Open ID Connect, Multi-Factor Authentication...  ...API usage in all Oracle IAM components for various use cases... 
    Contract work
    Shift work

    InterSources

    New York, NY
    1 day ago
  • Senior Associate - IAM Engineer

    $124k - $177k

    Location Designation: Hybrid - 3 days per quarter As part of Technology...  ...'s success. What You’ll Do: Engineer, configure, and maintain IAM solutions across IGA, PAM, Directory, and WAM domains....  ...PingFederate, Ping Directory, Entra and Active Directory. Proven experience... 

    New York Life

    New York, NY
    5 days ago
  • Principal Active Directory Engineer

    $146k - $244.8k

     ...Principal Active Directory Engineer Calling all innovators - find your future at Fiserv. We're...  ...MCSE), or similar. Experience with hybrid cloud environments and integrating on-...  ...with Identity and Access Management (IAM) frameworks and solutions. How you... 
    Full time
    Contract work
    For contractors
    Work experience placement
    Local area
    Night shift

    BentoBox

    Passaic, NJ
    1 day ago
  • SailPoint Identity Security Engineer - Cloud IAM & Automation
     ...6degrees is seeking a Security Identity Engineer responsible for implementing and maintaining...  ...include developing APIs, supporting IAM operations, and creating technical documentation...  ...skills in tools such as SailPoint and Active Directory. This is a 6-month position with... 

    66degrees

    New York, NY
    4 days ago
  • Senior Active Directory & ICAM Engineer
    Koniag Information Security Services, LLC is seeking a Senior Active Directory Engineer to support our government customer in Carson, CA. This role requires expertise in Active Directory environment management, implementing security compliance and automation through PowerShell... 

    Koniag Information Security Services, LLC

    Fort Lee, NJ
    1 day ago
  • Remote- Systems Engineering -

    $125k - $150k

     ...humans! BBR Partners is seeking a Systems Engineer to play an integral role as a member...  ...Windows Servers, workstations, Active Directory/Entra ID, Group Policy, DNS/DHCP, and certificate...  ...and Sabbatical with company tenure. ~ Hybrid remote work environment, "Work from Anywhere... 
    Full time
    Temporary work
    Casual work
    Work at office
    Remote work
    Flexible hours
    3 days per week

    BBR Partners

    New York, NY
    3 days ago
  • Systems Engineer

    $80k - $120k

     ...Job Title: Systems Engineer Location: Midtown Manhattan NYC Schedule: Mon-Fri 9a-6p Hybrid 1 day WFH Acture Solutions is seeking a highly skilled...  ...accounts and access controls across Active Directory and Azure (Entra ID). • Implement and enforce IT security... 
    Work at office
    Local area
    Work from home

    Acture Solutions

    New York, NY
    4 days ago
  • IT Risk and Security Engineer - IAM Access Intelligence
     ...delivers high-quality information through activities that include development of essential,...  .... The Identity and Access Management (IAM) area exists to reduce risk, enhance compliance...  ...well-being. DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote... 
    Remote work
    Flexible hours

    Dtcc

    Jersey City, NJ
    5 days ago
  • Active Directory, Messaging Engineer
     ...Active Directory, Messaging Engineer Sonsoft, Inc. is a USA based corporation duly organized under the laws of the Commonwealth of Georgia. Sonsoft Inc. is growing at a steady pace specializing in the fields of Software Development, Software Consultancy and Information... 
    Work at office

    SonSoft

    New York, NY
    5 days ago
  • Sr. Systems Engineer - Hybrid
     ...Position Name: Sr. Systems Engineer Reports to: Client Technology Manager Location/Type: New York, NY/Hybrid Onsite Atlas Technica's mission is to shoulder IT...  ...Microsoft Windows Server Platforms as well as Active Directory, Group Policy, good if you are familiar... 
    Full time
    Work at office

    Atlas Technica

    New York, NY
    1 day ago
  • Sr Staff Systems Engineer

    $124.5k - $182.5k

    Sr Staff Systems Engineer page is loaded Sr Staff Systems...  ...Ago job requisition id R-104057 About the...  ...available Windows servers and Active Directory, enterprise IT...  ...expertise in Active Directory/Entra ID and ADSI Advanced...  ...understanding of hybrid environments and sufficient... 
    Full time
    Work experience placement
    Local area

    ZT Group Intl, Inc. dba ZT Systems

    Secaucus, NJ
    5 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Active Directory / Entra ID / IAM Engineer- HYBRID. Be the first to apply!