The Senior Lead Directory Services Engineer is responsible for leading and advancing enterprise directory infrastructure across on-premise, hybrid, and cloud environments. This role oversees Microsoft Active Directory, Entra ID/Azure AD, LDAP directories, Ping Directory, and RadiantOne VDS—along with domain controllers, servers, storage, and network dependencies. This individual ensures uptime, security, replication integrity, and modernization of identity platforms while partnering with Cyber, Infrastructure, and Business stakeholders.RESPONSIBILITIES:Key areas of focus for the Directory Services Engineer include ensuring global uptime, monitoring, and failover of directory services, seamlessly connecting directory services with identity and business systems, and enforcing secure protocols, admin separation, and access tiering.  The successful candidate will be responsible for the following activities:Directory & Infrastructure LeadershipDesign, secure, and maintain Active Directory, Entra ID/Azure AD, LDAP, Ping Directory, and RadiantOne VDSManage domain controllers, server builds, storage integration, replication roles, and monitoringOversee DNS/DHCP integration, site topology, failover, and global uptimeNetworking & Platform IntegrationPartner with network teams to manage VLANs, firewalls, subnets, VPN/site links, and isolated environmentsCoordinate directory services across Windows, Linux, Unix (AIX/Solaris), and macOS platformsArchitecture, Security & HardeningImplement forest/domain architecture, OU models, replication topology, and delegated accessApply Tier 0 protections, MFA integration, privileged access separation, and credential hardeningEnforce CIS, DISA STIG, and Microsoft baselines for directory services and supporting systemsGPO & Policy EnforcementLead Group Policy design and enforcement for security baselines, login policies, TLS/LDAPS, firewall controls, encryption, and device postureConduct policy audits, conflict resolution, and impact assessmentsIdentity Lifecycle & Object GovernanceOversee provisioning and synchronization of users, groups, service accounts, and privileged identitiesManage schema extensions, object standards, and directory hygiene across hybrid ecosystemsEndpoint, OS & Server SecurityHarden servers and VMs with patch baselines, encryption, EDR/XDR, LSASS protection, PAWs, and conditional accessImplement secure communications over Kerberos, LDAPS, and certificate-based trustIntegration & CollaborationIntegrate directory services with IT, IAM/PAM platforms, PKI, authentication systems, and enterprise applicationsPartner with Cloud, Security Engineering, and Infrastructure teams on modernization and resiliency effortsModernization & Strategic InitiativesLead cloud-native directory strategies, domain consolidation, and migration initiativesProvide architectural guidance for enterprise security programs and automation