Senior Active Directory Administrator

Avensys is a reputed global IT professional services company headquartered in Singapore. Our service spectrum includes enterprise solution consulting, business intelligence, business process automation and managed services. Given our decade of success we have evolved to become one of the top trusted providers in Singapore and service a client base across banking and financial services, insurance, information technology, healthcare, retail and supply chain.

Job Title: Senior Active Directory Administrator

Location: Riyadh, Saudi Arabia (Onsite)

Employment Type: Full-Time

Position Overview

We are seeking an experienced Senior Active Directory (AD) Administrator to lead, manage, and optimize our enterprise identity and access management environment. The ideal candidate will possess deep technical expertise in Active Directory, Group Policy, DNS/DHCP, Azure AD, Identity Security, and enterprise-scale infrastructure support. This role requires hands-on administration, architecture-level decision-making, and the ability to work closely with cross-functional teams.

Key Responsibilities

Active Directory Administration & Architecture

Design, implement, and maintain Active Directory forests, domains, trusts, and sites.

Administer and optimize Group Policies (GPO), OU structure, and AD schema.

Perform AD health checks, replication monitoring, and troubleshooting.

Manage and secure DNS, DHCP, NPS, and Certificate Services (PKI).

Identity & Access Management

Manage Azure Active Directory, hybrid identity, AAD Connect, and SSO integrations.

Implement and maintain identity governance, privileged access controls, and role-based access models.

Ensure strong integration between on-prem AD and cloud platforms.

Security & Compliance

Implement security baselines, hardening standards, and MFA/Conditional Access policies.

Work closely with cybersecurity teams on identity-related incidents and threat mitigation.

Ensure compliance with ISO 27001, NCA ECC, SAMA CSF, or other local regulatory frameworks.

Operations & Support

Serve as a subject matter expert (SME) for all AD-related escalations.

Lead patching, backup, recovery, and DR procedures for identity systems.

Maintain documentation, runbooks, and architecture diagrams.

Participate in on-call rotations when required.

Qualifications & Experience

Bachelor's degree in Computer Science, Information Technology, or related field.

710+ years of hands-on experience with Active Directory administration in enterprise environments.

Strong expertise with:

Windows Server (2016/2019/2022)

AD DS, DNS, DHCP, GPO

Azure Active Directory, AAD Connect, Conditional Access

PowerShell scripting and automation

AD security hardening and identity lifecycle management

Experience with:

Microsoft Identity Manager (MIM) or similar IAM tools (preferred)

PKI, Certificate Services

SIEM/log analysis for identity events

Relevant certifications preferred:

Microsoft Azure Administrator (AZ-104)

Microsoft Identity & Access (SC-300)

MCSE / MCSA

Any cybersecurity certifications (nice to have)