ZipRecruiter

Log In

1

Azure Active Directory Engineer Jobs (NOW HIRING)

Fuse Engineering LLC

Active Directory Engineer

Annapolis, MD · On-site

$52.25 - $68.25/hr

Troubleshooting skills with Active Directory Infrastructure, Azure AD, Group Policies, DNS, PKI ... and engineering enterprise level solutions ? Ability to quickly get up to speed on complex ...

Stem Xpert

Active directory engineer

Plano, TX

$50.50 - $66/hr

Title: Active directory engineer Location: Open for Plano, TX, McLean, VA Or Melville, NY Duration: 6-12 months The primary function of the Active Directory engineer will be to assist in the ...

Navtech, Inc.

Active Directory Engineer Specialist

Plano, TX · On-site

$50.50 - $66/hr

AWS and Azure are preferred. Prior hands on experience with Active Directory migrations would be a ... Your Impact: * Provide technical leadership for a team of AD engineers to think and execute ...

Arctiq

Active Directory Engineer - RC4

Duluth, GA · On-site

$48.50 - $63.50/hr

The Active Directory Engineer is responsible for architecting, maintaining, securing, and optimizing Active Directory services and domain controller infrastructure that support enterprise identity ...

Collabera

Active Directory Engineer

The Woodlands, TX

$47 - $61.75/hr

Architect, design and implement solutions for Active Directory infrastructure for efficiency and continuous improvement opportunities * Assure compliance with security and controls for Active ...

next page

Showing results 1-20

All JobsAzure Active Directory Engineer Jobs

Azure Active Directory Engineer information

See salary details

$33

$58

$75

How much do azure active directory engineer jobs pay per hour?

As of Jun 23, 2026, the average hourly pay for azure active directory engineer in the United States is $58.12, according to ZipRecruiter salary data. Most workers in this role earn between $50.72 and $66.35 per hour, depending on experience, location, and employer.

What is an Azure Active Directory Engineer?

An Azure Active Directory (Azure AD) Engineer is an IT professional responsible for designing, implementing, managing, and troubleshooting identity and access solutions using Microsoft Azure Active Directory. They ensure secure authentication, manage user and group permissions, integrate applications with Azure AD, and support single sign-on (SSO) and multi-factor authentication (MFA) across an organization. These engineers play a crucial role in protecting organizational resources by maintaining compliance, monitoring security, and enabling seamless user access to cloud and on-premises applications.

What are the key skills and qualifications needed to thrive as an Azure Active Directory Engineer, and why are they important?

To thrive as an Azure Active Directory Engineer, you need strong expertise in identity and access management, cloud infrastructure, and a solid understanding of Azure AD concepts, typically supported by a degree in computer science or related certifications like Microsoft Certified: Azure Security Engineer Associate. Proficiency in tools such as Azure Portal, PowerShell scripting, and identity governance systems is essential. Excellent problem-solving abilities, attention to detail, and strong communication skills help you effectively manage complex environments and collaborate with IT teams. These skills are crucial to ensure secure, efficient authentication systems and protect organizational resources from security threats.

What are some typical challenges faced by Azure Active Directory Engineers when integrating on-premises and cloud identity solutions?

Azure Active Directory Engineers often encounter challenges when synchronizing on-premises Active Directory environments with Azure AD, such as managing directory synchronization, resolving attribute conflicts, and ensuring seamless single sign-on experiences. Navigating hybrid identity scenarios requires a strong understanding of both legacy and cloud-based authentication protocols, as well as security best practices. Engineers also need to coordinate closely with security, networking, and application teams to troubleshoot issues and ensure a smooth, secure integration.
What cities are hiring for Azure Active Directory Engineer jobs? Cities with the most Azure Active Directory Engineer job openings:
What states have the most Azure Active Directory Engineer jobs? States with the most job openings for Azure Active Directory Engineer jobs include:
Azure Active Directory Engineer jobs near you

Active Directory Engineer

MEDVACON TALENT ACQUISITION, LLC

Houston, TX • On-site

$50.25 - $65.75/hr

Full-time

Posted 5 days ago

Job description

Job Summary:
MEDVACON TALENT ACQUISITION, LLC is seeking a Windows Active Directory Engineer to stabilize, secure, and modernize their enterprise Active Directory environment. The role focuses on directory cleanup, identity hygiene, replication health, and security hardening to ensure compliance and resilience aligned with Zero Trust identity principles.
Responsibilities:
• Perform comprehensive AD cleanup including stale objects, unused OUs, orphaned SIDs, legacy GPOs, and deprecated configurations.
• Normalize and restructure OU hierarchy, naming standards, and attribute consistency.
• Identify and remediate duplicate SPNs, conflicting UPNs, and misconfigured service accounts.
• Clean up old domain controllers, decommission legacy forests/domains, and remove deprecated trust relationships.
• Conduct ACL cleanup to eliminate excessive permissions and privilege creep.
• Implement CIS/NIST/Microsoft security baselines for domain controllers and AD objects.
• Harden authentication by reducing NTLM, enforcing Kerberos protections, and implementing authentication policies/silos.
• Deploy and maintain Privileged Access Workstations (PAW) and tiered admin model (Tier 0/1/2).
• Remediate identity vulnerabilities such as DC Sync exposure, unconstrained delegation, Golden Ticket risks, and weak ACLs.
• Integrate AD logs with SIEM platforms (Sentinel, Splunk, QRadar) for continuous monitoring.
• Implement secure service account management, including gMSA adoption and rotation policies.
• Monitor and maintain AD replication topology, site links, and inter‑site connectivity.
• Troubleshoot replication failures (USN rollback, lingering objects, tombstone issues).
• Perform authoritative and non‑authoritative restores as needed.
• Ensure domain controllers are patched, hardened, and compliant with security standards.
• Validate SYSVOL health (DFSR), replication convergence, and GPO consistency.
• Audit and clean up legacy, conflicting, or redundant GPOs.
• Standardize GPO structure, naming, and versioning.
• Implement GPO security baselines for servers, workstations, and privileged accounts.
• Troubleshoot GPO processing issues and configuration drift.
• Support and optimize Azure AD Connect sync, attribute flows, and identity lifecycle.
• Remediate sync errors, duplicate identities, and hybrid identity conflicts.
• Implement Conditional Access, MFA enforcement, and modern authentication policies.
• Support migration toward Zero Trust identity and passwordless authentication.
• Maintain detailed documentation of AD topology, GPOs, replication, and security configurations.
• Develop identity governance standards, naming conventions, and lifecycle processes.
• Provide recommendations for AD modernization, consolidation, and long‑term stability.
• Participate in audits, compliance reviews, and security assessments.
Qualifications:
Required:
• 5–10+ years of hands‑on experience with Active Directory, DNS, DHCP, GPO, and Windows Server.
• Deep expertise in AD cleanup, replication troubleshooting, and security hardening.
• Strong PowerShell skills for automation and bulk remediation.
• Experience with Azure AD / Entra ID, hybrid identity, and AAD Connect.
• Familiarity with SIEM, identity threat detection, and AD attack paths.
• Understanding of Kerberos, NTLM, LDAP, SAML, OAuth, and modern auth.
Preferred:
• Knowledge of Red Forest / ESAE, Tiered Admin Model, and Zero Trust identity.
• Certifications: Microsoft Identity & Access Administrator (SC‑300), Azure Administrator
Company:
When your hiring needs expand, MEDVACON Talent Acquisition experts are here to assist you. Founded in 2012, the company is headquartered in Sparta, New Jersey, US, , with a team of 51-200 employees. The company is currently Growth Stage.

Apply