Senior Directory Infrastructure Engineer
Description:
Job Description
Location: Washington, DC
Work Arrangement: Onsite with 1 day remote
Duration: 12 month contract, with possible extension
W-2 or 1099
No C2C, visa transfers, or sponsorship
The DNA Group is seeking a Senior Directory Infrastructure Engineer to lead and support complex identity and directory service projects in a multi-forest, hybrid enterprise environment. This is a senior-level role requiring deep technical expertise in Active Directory, Entra ID, OKTA, and identity infrastructure automation.
Overview Requirements:
• 5+ years of hands-on experience with enterprise directory services (Active Directory, Entra ID, OKTA Universal Directory, LDAP).
• Demonstrated expertise in AD domain lifecycle management including domain creation, upgrades, and decommissioning.
• Advanced PowerShell scripting skills with proven automation of directory management tasks.
• Proven experience with Microsoft GraphAPI and REST API for directory integration and management.
• Experience with directory synchronization tools such as Azure AD Connect and OKTA integration agents.
• Strong understanding of identity security best practices and compliance standards.
• Hands-on experience in multi-forest and hybrid identity environments.
• Ability to design and implement complex directory architecture solutions.
Minimum Qualifications:
• Bachelor’s degree.
Preferred Qualifications:
• Relevant certifications (e.g., Microsoft 365 Certified: Identity and Access Administrator, OKTA Professional).
• Experience with Terraform, Ansible, or similar Infrastructure-as-Code (IaC) tools for directory infrastructure.
• Knowledge of modern authentication protocols such as SAML, OAuth, and OIDC.
• Experience with Group Policy design and management.
• Expertise in domain controller sizing, placement, and performance optimization.
• Experience with domain functional level upgrades and cross-domain migrations.
• Familiarity with CI/CD pipelines for infrastructure automation.
• Experience implementing Zero Trust architecture.
Required Experience:
• Experience with enterprise directory services (Active Directory, Entra ID, OKTA Universal Directory, LDAP): 6 years (Required)
• Experience with AD domain lifecycle management including domain creation, upgrades, and decommissioning: 5 years (Required)
• Advanced PowerShell scripting skills with demonstrable experience automating directory management tasks: 5 years (Required)
• Proven experience with Microsoft GraphAPI and REST API integration for directory management: 5 years (Required)
• Strong understanding of identity security best practices and compliance requirements: 5 years (Required)
• Experience with directory synchronization technologies (Azure AD Connect, OKTA integration agents, etc.): 5 years (Required)
• Experience with multi-forest and hybrid identity environments: 5 years (Required)
• Ability to design and implement complex directory architecture solutions: 5 years (Required)
This Job Is Ideal for Someone Who Is:
• Critical thinker – enjoys analyzing complex identity and infrastructure challenges.
• Detail-oriented – carefully documents architecture, procedures, and troubleshooting steps.
• Proactive – takes initiative to identify and resolve issues before they impact operations.
• Technically driven – passionate about scripting, automation, and infrastructure as code.
• Security-minded – prioritizes secure design and adheres to identity best practices.
• Adaptable – comfortable working in hybrid, multi-forest, and evolving environments.
• Strong communicator – explains technical concepts clearly to both technical and non-technical audiences.
• Lifelong learner – stays current with emerging technologies, tools, and certifications.
The DNA Group maintains a drug free workplace and conducts pre-employment drug-testing, where applicable, in accordance with federal, state, and local laws.
Hybrid remote