1

Active Directory Architect Jobs (NOW HIRING)

Leidos is seeking a highly skilled Active Directory Architect / Engineer to review and re-architect ATR's Microsoft Active Directory and hybrid identity environments. The candidate will be ...

Leidos is seeking a highly skilled Active Directory Architect / Engineer to review and re-architect ATR's Microsoft Active Directory and hybrid identity environments. The candidate will be ...

Leidos is seeking a highly skilled Active Directory Architect / Engineer to review and re-architect ATR's Microsoft Active Directory and hybrid identity environments. The candidate will be ...

Leidos is seeking a highly skilled Active Directory Architect / Engineer to review and re-architect ATR's Microsoft Active Directory and hybrid identity environments. The candidate will be ...

next page

Showing results 1-20

Active Directory Architect information

See salary details

$33

$69

$95

How much do active directory architect jobs pay per hour?

As of Jul 3, 2026, the average hourly pay for active directory architect in the United States is $69.02, according to ZipRecruiter salary data. Most workers in this role earn between $62.74 and $81.01 per hour, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive in the Active Directory Architect position, and why are they important?

An Active Directory Architect requires deep expertise in identity management, directory services, and network infrastructure, usually supported by a degree in computer science or a related field. Familiarity with tools like Microsoft Active Directory, Azure AD, PowerShell scripting, and certifications such as Microsoft Certified: Identity and Access Administrator Associate are highly valuable. Strong problem-solving abilities, analytical thinking, and effective communication skills help in designing secure, scalable solutions and working across teams. These capabilities are essential for maintaining robust enterprise security, ensuring system reliability, and facilitating smooth IT operations.

What does an Active Directory Architect do?

An Active Directory Architect designs, implements, and maintains an organization's Active Directory infrastructure to ensure secure and efficient identity and access management. They develop strategies for authentication, authorization, security policies, and directory services integration. Additionally, they troubleshoot issues, optimize performance, and ensure compliance with industry standards. Their role is critical in maintaining system security, scalability, and operational efficiency.

What are some common challenges faced by Active Directory Architects in their day-to-day work?

Active Directory Architects often encounter challenges such as designing and maintaining a secure, scalable directory environment that meets organizational needs while minimizing downtime. They must also address legacy system integrations, manage complex migrations, enforce security policies, and keep up with best practices in identity management. Collaboration with security, networking, and application teams is frequent to ensure alignment and seamless operations. These challenges make problem-solving skills and adaptability especially important for ensuring the integrity and performance of enterprise IT environments.

Who are the top companies hiring for Active Directory Architect jobs? The top employers for Active Directory Architect jobs are:
What states have the most Active Directory Architect jobs? States with the most job openings for Active Directory Architect jobs include:
What job categories do people searching Active Directory Architect jobs look for? The top searched job categories for Active Directory Architect jobs are:
Infographic showing various Active Directory Architect job openings in the United States as of June 2026, with employment types broken down into 54% Full Time, and 46% Contract. Highlights an 90% Physical, 5% Hybrid, and 5% Remote job distribution, with an average salary of $143,557 per year, or $69 per hour.
Active Directory Architect / Engineer

Active Directory Architect / Engineer

Leidos

Hyattsville, MD • On-site

$131K - $237K/yr

Full-time

Medical, Retirement, PTO

This job post has expired today. Applications are no longer accepted.


Leidos rating

8.4

Company rating: 8.4 out of 10

Based on 147 frontline employees who took The Breakroom Quiz

56th of 437 rated business services


Job description

Description

Looking for an opportunity to make an impact?

At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers’ success.

We empower our teams, contribute to our communities, and operate sustainable. Everything we do is built on a commitment to do the right thing for our customers, our people, and our community.

Our Mission, Vision, and Values guide the way we do business.

If this sounds like the kind of environment where you can thrive, keep reading!

The Digital Modernization Sector brings together our digital transformation and IT programs, allowing us to better serve our customers through scale and repeatability.

(Group Profile/Link to Group page) - https://www.leidos.com/capabilities/digital-modernization

Your Next Great Adventure Awaits!

Leidos is seeking a highly skilled Active Directory Architect / Engineer to review and re-architect ATR’s Microsoft Active Directory and hybrid identity environments. The candidate will be responsible for overseeing the implementation, optimization, and ongoing management of the updated architecture and will play a key role in maintaining integrity, availability, and security of identity and access management systems that support the entire ATR organization. This position focuses on both the on-premises Active Directory Domain Services (AD DS) and integration with Microsoft Entra ID (formerly Azure AD).

Please Note: This work is located onsite in the DC area.

Key Responsibilities:

  • Design, deploy, upgrade, and administer Active Directory Domain Services, including domain controllers, forests, domains, trusts, and replication topologies (i.e. Manage and optimize Group Policy Objects (GPOs), OU structures, and security baselines; including object management through bulk operations and automation, Troubleshoot and resolve complex AD-related issues, including authentication failures, replication problems, DNS issues, and Kerberos/NTLM problems, Plan and execute Active Directory migrations, consolidations, and upgrades (of both underlying server infrastructure and overall forest/domain functional levels), Develop and maintain disaster recovery, backup, and restore procedures for AD environments (including AD Recycle Bin and authoritative restores), Monitor AD health and performance using tools such as Microsoft System Center, Azure Monitor, or third-party solutions).

  • Implement and maintain Advanced Microsoft Entra ID (Azure AD), Okta, hybrid identity models, Privileged Access Management (PAM), and Public Key Infrastructure services in compliance with federal standards (e.g. NIST and DISA STIG).

  • Engineer and implement security best practices including: (i.e. Privileged Access Management (PAM), Just-In-Time (JIT) access, tiered administration, and Least Privilege principles, Zero Trust network access (ZTNA), secure enclave integration, and defense-in-depth methodologies, Compliance with security standards, regulatory requirements (SOC 2, ISO 27001, HIPAA, CMMC, etc.), and internal policies.

  • Collaborate with Security, Endpoint, Cloud, and Application teams on identity-related projects and incident response.

  • Automate repetitive tasks using PowerShell, Microsoft Graph, Python, and Infrastructure as Code (leveraging Ansible) where applicable. 

Required Qualifications:

  • Bachelor’s degree in Computer Science, Information Technology, Engineering, OR in a related field and 12+ years of relevant experience OR Masters degree with 10+ years of relevant experience . Additional years of experience will be considered/accepted in lieu of a degree.

  • 12+ years of hands-on experience as an Active Directory Architect, Engineer, OR Senior Administrator in complex enterprise environments.

  • Deep expertise in designing, deploying, upgrading, and administering Microsoft Active Directory Domain Services (AD DS), including domain controllers, multi-domain/forest architectures, trusts, replication topologies, Group Policy Objects (GPOs), OU design, and security baselines.

  • Strong experience with hybrid identity solutions, including synchronization and integration between on-premises AD DS and Microsoft Entra ID (formerly Azure AD).

  • Proven track record in troubleshooting and resolving complex AD issues (authentication failures, replication, DNS, Kerberos/NTLM, etc.).

  • Experience with Active Directory migrations, consolidations, forest/domain functional level upgrades, and infrastructure modernization.

  • Solid understanding of disaster recovery, backup/restore procedures for AD (including AD Recycle Bin and authoritative restores).

  • Experience implementing and managing Privileged Access Management (PAM), Just-In-Time (JIT) access, tiered administration models, and Least Privilege principles.

  • Working knowledge of Public Key Infrastructure (PKI), Zero Trust Network Access (ZTNA), secure enclaves, and defense-in-depth security strategies.

  • Familiarity with compliance frameworks and federal standards such as NIST, DISA STIGs, SOC 2, ISO 27001, HIPAA, and CMMC.

  • Proficiency in automation and scripting using PowerShell, Microsoft Graph, Python, and Infrastructure as Code tools (e.g., Ansible).

  • Experience collaborating with Security, Cloud, Endpoint, and Application teams on identity-related initiatives and incident response.

  • Strong communication skills and ability to work independently as a contractor in a dynamic environment.

  • U.S. Citizenship required.

  • Ability to obtain and maintain a Public Trust security clearance.

Preferred Qualifications:

  • Experience with Okta for identity management and federation.

  • Background supporting federal or regulated industries with strict compliance requirements.

  • Experience using monitoring tools such as Microsoft System Center, Azure Monitor, or third-party AD health solutions.

  • Knowledge of modern identity security practices and integration with cloud platforms.

Desired Certifications (one or more of the following):

  • Microsoft Certified: Identity and Access Administrator Associate (SC-300).

  • Microsoft Certified: Windows Server Hybrid Administrator Associate (AZ-800 + AZ-801).

  • Microsoft Certified: Azure Administrator Associate (AZ-104).

  • Microsoft Certified: Azure Security Engineer Associate (AZ-500).

  • CISSP (Certified Information Systems Security Professional).

  • CISM (Certified Information Security Manager).

  • Okta Certified Professional or Okta Certified Administrator.

Please Note:  The program budget salary for this role could fall anywhere between mid $150,000 to low/mid $170,000 with a slight wiggle room (no guarantees) based on relevant experience and assessment.  Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law. 

Leidos is growing!  Connect with us on LinkedIn and Facebook.

If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo — because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 — and moving faster than anyone else dares.

Original Posting:June 18, 2026

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:Pay Range $131,300.00 - $237,350.00

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

About Leidos

Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximately $16.7 billion for the fiscal year ended January 3, 2025. For more information, visit www.Leidos.com.

Pay and Benefits

Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at www.leidos.com/careers/pay-benefits.

Securing Your Data

Beware of fake employment opportunities using Leidos’ name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system – never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at LeidosCareersFraud@leidos.com.

If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission.

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.


What Leidos employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom


Leidos logo

About Leidos

Sourced by ZipRecruiter

At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success. We empower our teams, contribute to our communities, and operate sustainable practices. Everything we do is built on a commitment to do the right thing for our customers, our people, and our community.

Industry

It services

Company size

10,000+ Employees

Headquarters location

Reston, VA, US

Social media