Technical Lead - Active Directory & Entra ID Services

Job Summary

Tech Lead Active Directory & Entra ID Services

Active Directory (AD)

Entra ID (Azure AD)

leading day-to-day operations

driving service excellence

mentoring team members

acting as the key point of contact

Key Responsibilities

Leadership & Service Delivery

• Lead a team of engineers for L2/L3 support for Active Directory and Entra ID environments.
• Own and drive technical delivery, ensuring SLAs, KPIs, and compliance targets are met.
• Act as a primary technical and operational escalation point for identity and directory-related incidents.
• Coordinate and manage incident, problem, and change management processes for AD/Entra services.
• Participate in reviews with stakeholders and provide actionable insights.
• Prepare and deliver service performance reports, and management updates.
• Drive continuous improvement, automation, and standardization across the environment.
• Collaborate with project teams to support new implementations, migrations, and transformations.
• Maintain strong customer relationships, ensuring satisfaction and proactive communication.
  

People & Team Management

• Manage day-to-day operations of the team, including workload allocation and task prioritization.
• Provide mentoring, and support skills development plans for team members.
• Promote a collaborative and high-performance culture within the team.
• Drive training initiatives and knowledge sharing sessions to strengthen team capabilities.
  

Technical Responsibilities

• Administer and support Active Directory Domain Controllers, forests, and trust relationships.
• Perform promotion/demotion of domain controllers and forest-level administration.
• Manage Group Policy Objects (GPOs), Sites and Services, and replication configurations.
• Conduct regular AD health checks, database cleanup, and replication remediation.
• Manage SYSVOL, Global Catalogue, FSMO roles, and Windows Time Services.
• Implement and support Active Directory backup, recovery, and disaster recovery procedures.
• Configure and manage Certificate Services and Public Key Infrastructure (PKI).
• Manage roaming profiles, folder redirection, and cloud storage access control (Azure Storage).
• Lead Active Directory domain migrations and consolidation projects.
• Ensure security hardening and vulnerability management of domain controllers.
  

Entra ID / Hybrid Identity

• Administer and support Entra Connect / Sync servers and synchronization rules.
• Manage Azure AD roles, Administrative Units, and RBAC.
• Configure and manage Conditional Access Policies, Application Registrations (OIDC, SAML), and Dynamic Groups.
• Oversee Privileged Identity Management (PIM) and Service Principals.
• Support custom domain management and identity lifecycle processes.
• Collaborate on integrations with OKTA or other IAM solutions.
  

Automation, Documentation & Process

• Develop and maintain PowerShell scripts for automation, reporting, and health monitoring.
• Maintain up-to-date technical documentation, architecture diagrams, and standard operating procedures (SOPs).
• Drive process efficiency by implementing best practices and automation frameworks.
• Support audit and compliance requirements by maintaining accurate records and configurations.
• Prepare Root cause analysis and related documentations for incidents and problem management.
• Shift management to ensure round the clock support.
  

Required Skills

• 1012 years of relevant experience in Active Directory and Entra ID management, with at least 23 years in a leadership role.
• Deep understanding of Windows Server infrastructure, DNS, PKI, and IAM principles.
• Strong PowerShell scripting and automation experience.
• Demonstrated experience in customer-facing service delivery and technical leadership.
• Excellent communication, stakeholder management, and reporting skills.
• Strong problem-solving and analytical mindset with the ability to manage critical incidents under pressure.
  

Preferred Certifications

• Microsoft Certified: Identity and Access Administrator (SC-300)
• Microsoft Certified: Azure Administrator Associate (AZ-104)
• Microsoft Certified: Windows Server Hybrid Administrator Associate
• ITIL Foundation Certification