Active Directory (AD) Architect/lead---Irvine, CA Onsite

[Rupal jain (recruiter)]

Hello,
This is Rupal from Tekgence, I’m a Staffing Specialist and I am reaching out to you on an exciting job opportunity with one of our clients.
Kindly share the resume for below role along with Visa status and current location at rupal...@tekgence.com

Job Title: Active Directory (AD) Architect/lead
Location: Irvine, CA-Onsite
Duration: Contract Role

Job Summary

We are seeking an experienced AD Architect to lead Active Directory architecture and cloud identity integration initiatives for enterprise migration programs. The candidate should have strong expertise in Microsoft Active Directory, AWS cloud environments, hybrid authentication, and identity/security solutions.

Key Responsibilities

• Lead AD architecture design for enterprise migration and DC Exit programs ensuring hybrid identity continuity.
• Deploy and optimize Active Directory Domain Controllers on AWS EC2 with resilient multi-site topology.
• Create AD integration models for migrated Java/.NET applications, Oracle Exadata, and TIBCO workloads.
• Develop SAML/SSO and MFA authentication models for cloud-hosted applications.
• Define trust models, OU/GPO strategy, DNS alignment, and secure access controls.
• Map AD dependencies and authentication paths for migration waves.
• Automate provisioning and configuration using Terraform, Ansible, and PowerShell.
• Prepare operational runbooks, topology diagrams, HLD/LLD documentation, and transition guidelines.

Cloud Experience Required

• Hands-on deployment of AD on AWS including multi-AZ architecture and replication setup.
• Experience with AWS Directory Services, DNS forwarding, and hybrid authentication flows.
• Expertise integrating AD with AWS IAM, SAML providers, and MFA solutions.
• Strong networking knowledge including VPC, routing, Security Groups, DX/VPN/TGW.
• Understanding of cloud security best practices for identity, access, and compliance.

Required Skills

• Strong expertise in:
  • Microsoft Active Directory
  • AD multi-site design
  • FSMO roles
  • Replication and DNS integration
• Hands-on experience deploying AD Domain Controllers on AWS.
• Strong understanding of SAML, identity federation, and MFA implementation.
• Experience integrating AD with Java/.NET applications, Oracle/SQL databases, and TIBCO integrations.
• Strong knowledge of Windows Server 2016–2025 and hybrid identity systems.
• Skilled in GPOs, OU structures, certificate services, and identity security hardening.
• Familiarity with Terraform, Ansible, and PowerShell automation.
• Strong troubleshooting skills for authentication, replication, and hybrid identity issues.

 

Thanks and Regards

Rupal Jain

rupal...@tekgence.com

Team Lead- IT Recruitment

www.tekgence.com

655 Deseo Dr • Suite 104 • Irving, TX • 75039

We respect your online privacy. If you would like to be removed from our mailing list please reply with "Remove" in the subject and we will comply immediately. We apologize for any inconvenience caused. Please let us know if you have more than one domain. The material in this e-mail is intended only for the use of the individual to whom it is addressed and may contain information that is confidential, privileged, and exempt from disclosure under applicable law. If you are not the intended recipient, be advised that the unauthorized use, disclosure, copying, distribution, or the taking of any action in reliance on this information is strictly prohibited. We are an equal opportunity employer with a diverse workforce.