Job Openings Active Directory Admin

About the job Active Directory Admin

Active Directory Senior Engineer

Job Overview:

This role is responsible for implementing projects like custom banned passwords using Microsoft Entra password protection, ensuring compliance with regulatory and security requirements (e.g., HKMA C-RAF remediation). The engineer will work closely with the AD Team, IRMD IAM, and project stakeholders to deliver a secure and robust password policy across the enterprise.

Key Responsibilities:

  • Lead the implementation of custom banned passwords in Microsoft Entra ID (formerly Azure AD) password protection.
  • Analyze, design, and configure password policies to prevent weak or commonly used passwords in Active Directory and Entra ID environments.
  • Develop and maintain PowerShell scripts for automation, reporting, and policy enforcement.
  • Collaborate with project managers, security teams, and auditors to ensure regulatory compliance and successful project delivery.
  • Provide technical documentation, including implementation guides and operational procedures.
  • Troubleshoot and resolve issues related to password policies, AD, and Entra ID integration.
  • Mentor junior engineers and provide technical guidance on AD, Entra ID, and PowerShell best practices.
  • Be part of the AD BAU team to manage operational issues and participate in other major projects.

Required Skills & Experience:

  • Strong hands-on experience with Microsoft Active Directory (installation, multi-forest/domain management, GPO, DNS/DHCP).
  • In-depth knowledge of Microsoft Entra ID (Azure AD), especially password protection features and custom banned password lists.
  • Experiences in monitoring, analytics tools like SCOM, Zabbix, Splunk, Azure log analytics, ELK etc.
  • Advanced PowerShell scripting skills for automation and reporting.
  • Experience with regulatory compliance projects (e.g., HKMA C-RAF, SOX, GDPR) is a plus.
  • Excellent analytical, troubleshooting, and communication skills.
  • 710 years of IT experience, with at least 5 years in AD/Entra ID environments.

Preferred Certifications:

  • Microsoft Certified for AD and Entra ID.

Education level: Degree or equivalent in engineering/ IT field.


Or refer someone