Skip to content
SecRoles

Sr. Active Directory Architect/SME

JobgetherRemote (US)June 6, 2026
Remote
Full-time
Identity and Access Management
Staff · 10+ yrs

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Sr. Active Directory Architect/SME in the United States.

In this expert-level consulting role, you will lead a critical Active Directory modernization initiative within a secure federal enterprise environment. You will act as the primary technical authority guiding the migration of legacy Windows Server 2012 R2 domain controllers to Windows Server 2025 while enabling a modern hybrid architecture spanning on-premises infrastructure and Microsoft Azure. This role combines deep technical architecture expertise with strategic advisory responsibilities, ensuring that identity services remain secure, resilient, and fully operational throughout transformation activities. You will collaborate remotely with engineering and security teams to define migration strategies, validate implementations, and mitigate risks across complex enterprise systems. The position requires strong leadership in designing scalable identity infrastructures and ensuring seamless integration across cloud and on-prem environments. This is a high-impact engagement focused on modernization, security, and enterprise continuity.

Accountabilities

  • Lead the assessment of existing Active Directory environments, including forests, domains, trusts, DNS, DHCP, GPOs, replication, and identity dependencies.
  • Design secure, scalable hybrid Active Directory architectures integrating on-premises infrastructure with Microsoft Azure IaaS.
  • Develop migration strategies, detailed roadmaps, rollback plans, and execution frameworks for domain controller modernization.
  • Define and guide implementation of AD site topology, replication models, DNS architecture, and hybrid connectivity solutions.
  • Provide technical leadership for schema upgrades, functional level improvements, and Windows Server 2025 domain controller deployments.
  • Oversee FSMO role transfers, DNS/DHCP migrations, and validation of authentication and replication services.
  • Guide legacy system decommissioning, including demotion of Windows Server 2012 R2 domain controllers and cleanup activities.
  • Ensure enterprise security, compliance, and hardening standards are applied across the Active Directory ecosystem.
  • Develop architecture documentation, runbooks, migration procedures, and post-implementation as-built materials.
  • Conduct knowledge transfer sessions and final validation testing with technical stakeholders.

Requirements

  • 10+ years of experience in enterprise Active Directory administration, engineering, and architecture roles.
  • Deep expertise in Active Directory Domain Services (AD DS), including Windows Server 2012 R2 through Windows Server 2025 environments.
  • Strong knowledge of DNS, DHCP, Group Policy, PKI, AD replication, and FSMO role management.
  • Hands-on experience with Active Directory Sites and Services and large-scale domain controller migrations.
  • Solid understanding of hybrid identity environments and Microsoft Azure infrastructure (IaaS).
  • Strong background in AD security hardening, compliance standards, and identity governance best practices.
  • Experience with enterprise networking concepts, including VPNs, firewalls, routing, and hybrid connectivity solutions such as ExpressRoute.
  • Proven ability to lead infrastructure modernization and mission-critical migration projects.
  • Excellent communication, stakeholder management, and technical documentation skills.
  • Experience in federal, defense, or highly regulated environments is highly preferred.
  • Relevant Microsoft certifications in Azure, Windows Server, or identity technologies are a plus.

Benefits

  • Competitive contract opportunity based on experience and market rates.
  • Fully remote work arrangement within the United States.
  • Opportunity to lead a high-impact federal enterprise modernization initiative.
  • Exposure to advanced hybrid identity and Azure infrastructure architectures.
  • Collaboration with senior technical teams on mission-critical systems.
  • Short-term engagement (8–10 weeks) with potential for future opportunities.
  • Work on cutting-edge Windows Server and Active Directory technologies.

How Jobgether works:

We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team.

We appreciate your interest and wish you the best!

 Why Apply Through Jobgether? 

Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.

#LI-CL1

Job Details

Experience

Staff · 10+ yrs

Tools & Tech

Active Directory
Azure
Windows
Apply