ClawJobs
ClawJobs
Back to all jobs
T

Senior / Lead Engineer (Active Directory)

Tangspac Consulting Pte Ltd
D01 Marina, Raffles Place, People's Park, Cecil, Singapore
PermanentInformation Technology
Apply for this positionView all Tangspac Consulting Pte Ltd careers

Job Description

Large Global MNC with regional Infrastructure presence seeking an experienced Active Directory Lead to take ownership of our enterprise identity and directory services infrastructure. In this critical role, you will be responsible for the design, security, and operational health of our Active Directory forest, Entra ID (formerly Azure AD), and Group Policy environment. You will act as the subject matter expert for a large, complex financial services environment, ensuring high availability, security compliance, and operational excellence.

Key Responsibilities

  • Active Directory Forest & Domain Management: Lead the design, configuration, and maintenance of multi-domain Active Directory forests, including trust relationships, replication topology, schema management, and disaster recovery.

  • Entra ID (Azure AD) Hybrid Identity: Manage and optimize hybrid identity configurations, including Entra ID Connect, seamless single sign-on (SSO), conditional access policies, and identity synchronization between on-premises AD and Azure AD.

  • Group Policy (GPO) Engineering: Architect, deploy, and troubleshoot advanced Group Policy Objects (GPOs) to enforce security baselines, configure operating system settings, and manage application behavior across thousands of servers and workstations.

  • Security & Compliance: Implement and enforce security best practices for directory services, including privileged access management (PAM), least privilege principles, auditing, and monitoring. Ensure compliance with regulatory standards (e.g., MAS, ISO 27001).

  • Automation & Optimization: Leverage PowerShell and Infrastructure-as-Code (IaC) tools to automate routine tasks, health checks, reporting, and remediation efforts across the identity estate.

  • Incident & Problem Management: Serve as the highest level of escalation (Tier 4) for complex AD, Entra ID, and GPO-related incidents. Perform root cause analysis and implement permanent corrective measures.

  • Stakeholder & Team Leadership: Lead technical projects and mentor junior engineers. Partner with security, application, and infrastructure teams to align directory services with business needs.

Requirements

  • Minimum 10 years of hands-on experience in Active Directory design, administration, and support in a large enterprise environment (1,000+ users/systems).

  • Deep expertise in Active Directory Forests, including domain controllers, FSMO roles, global catalog, sites and services, and backup/restore methodologies.

  • Strong experience with Entra ID (Azure AD) , including hybrid identity, application registration, enterprise applications, and identity protection features.

  • Proven track record of GPO management, including security templates, administrative templates, preferences, item-level targeting, and troubleshooting with Resultant Set of Policy (RSoP) and Group Policy Modeling.

  • Advanced PowerShell scripting skills for AD, Entra ID, and GPO automation.

  • Familiarity with Active Directory security best practices, including tiered administrative models, protected users group, and authentication policy silos.

  • Excellent problem-solving and communication skills, with the ability to lead technical discussions and document complex environments.

  • Microsoft certifications such as MCSE, MCSA: Windows Server, or Azure Administrator/Architect.

Interested please submit your resume to [email protected]

About Tangspac Consulting Pte Ltd

First seen: May 29, 2026
Last updated: May 29, 2026