Senior Active Directory Architect
Barcelona, Catalonia, Spain
Full Time
3 hours ago
No Sponsorship
Key skills
CloudEntra IDActive DirectoryCommunication
About this role
Role Overview
- Assess and document the current Active Directory landscape across multiple environments.
- Define and implement target architecture and standards for Active Directory.
- Improve OU structures, delegation models, tiering, and Group Policy design.
- Address architectural inconsistencies and legacy configuration issues.
- Lead remediation of architectural weaknesses, security findings, and legacy Active Directory issues.
- Troubleshoot complex directory and authentication issues across domains and hybrid environments.
- Drive improvements in directory design, authentication, and operational resilience.
- Strengthen Active Directory resiliency, recovery preparedness, and restore processes.
- Ensure reliable integration between Active Directory and Microsoft Entra ID.
- Support and improve directory synchronization architecture, troubleshooting, and operational stability.
- Contribute to standards for authentication, administration, and lifecycle processes across hybrid identity.
- Provide architectural input into identity-related dependencies across Microsoft 365, particularly Microsoft Entra ID, Exchange hybrid, and endpoint identity integration with Intune.
- Support design decisions affecting access, device identity, and cloud-connected provisioning.
- Act as the technical authority for Active Directory within the Workplace team.
- Provide technical guidance to the team.
- Support identity-related architectural decisions across infrastructure projects.
- Work closely with infrastructure and application teams across the organization.
- Align directory and hybrid identity design with broader infrastructure and security initiatives.
- Support technical workshops and coordination with country IT teams where required.
Requirements
- Strong experience designing and operating enterprise Active Directory environments.
- Experience working in large, complex AD environments (multiple domains, trusts, or distributed environments).
- Deep knowledge of AD domain architecture, OU structure and delegation models, Group Policy architecture, authentication and identity security.
- Ability to analyze legacy environments and define practical remediations.
- Deep knowledge of directory synchronization (Entra ID Connect/Cloud Sync).
- Solid understanding of Microsoft Entra ID administration beyond synchronization, including authentication methods, hybrid identity design, and identity-related access controls.
- Experience with Exchange hybrid identity dependencies, including recipient-related Active Directory attributes and operational considerations.
- Good understanding of identity dependencies for Microsoft Intune and Entra-joined / hybrid-joined devices.
- Experience with identity lifecycle automation and provisioning flows across HR systems, Active Directory, and Microsoft Entra ID.
- Strong troubleshooting capabilities in complex identity infrastructures.
- Ability to handle both architectural topics and deep technical issues.
- Ability to work independently, drive delivery end-to-end, and follow through to completion.
- Clear communication skills (technical topics to mixed audiences) and solid documentation habits.
- Exposure to broader Microsoft 365 services and their dependency on hybrid identity design.
- Knowledge of identity governance or privileged access solutions.
Tech Stack
- Cloud
Benefits
- No information on benefits provided.