Active Directory Specialist
Location: Montreal (Downtown) – 5 days onsite / Montréal – Centre-ville – 5 jours en présentiel
Pay Rate: $95–$100/hour
Duration: 6+ months (possible extension up to 12 months)
Role Overview
We are seeking an experienced Active Directory Specialist to manage, secure, and optimize enterprise AD/Entra ID environments in a large-scale, critical infrastructure setting.
Must-Have Skills & Experience
- 5+ years of hands-on experience with Active Directory and Entra ID (Azure AD)
- Strong experience in AD Hybrid environments (on-prem + cloud)
- Expertise in:
- AD Domain Services, DNS, GPO, PKI, ADFS
- Entra ID / Azure AD Connect / Identity Governance
- Advanced PowerShell scripting (automation, auditing, remediation)
- Strong understanding of security concepts: RBAC, Zero Trust, MFA, AD Tiering
- Experience working in large, critical production environments
- Familiarity with tools such as PingCastle, Microsoft 365, Defender, Graph API
- Strong documentation, automation, and risk management skills
- English required (French is a plus)
Key Responsibilities
- Administer and secure AD forests, Domain Controllers, DNS, and GPOs
- Manage Entra ID, IAM, and AD Connect
- Support AD consolidation and security initiatives
- Automate processes using PowerShell
- Monitor, audit, and ensure compliance
- Contribute to disaster recovery and cross-functional projects
- Maintain documentation and governance standards
Requis :
- +5 ans avec une expérience significative en AD / Entra ID ; nous recherchons un spécialiste.
- Expérience en environnements de production critiques au sein de grandes entreprises internationales (une expérience dans le secteur bancaire est un plus).
- Expérience obligatoire des environnements AD hybrides (on-premises et cloud).
- Fort plus : expérience avec le chiffrement RC4 (l'équipe cherche à l'éliminer).
- Fort plus : expérience en consolidation Active Directory à grande échelle.
- Capacité à documenter, automatiser et anticiper les risques.
- Active Directory Domain Services, DNS, GPO, PKI, ADFS.
- Entra ID / Azure AD Connect / Identity Governance.
- PowerShell avancé (audits, scripts automatisés, remédiation).
- Concepts de sécurité : RBAC, Zero Trust, MFA, tiering AD.
- Outils : Sempris ADFR/Forest Druid, Ranger AD, PingCastle, Microsoft 365, Defender, Graph API.
- Connaissance des plans de reprise d'activité et de continuité d'activité (DRP/BCP) AD appréciée.
- Diplôme Client +2 à Client +5 avec une expérience significative en AD / Entra ID.
- Forte sensibilité à la sécurité, rigueur et maîtrise des environnements critiques.
- Capacité à travailler en équipe transverse dans un environnement international.
- Capacité à documenter, automatiser et anticiper les risques.
- Anglais requis. Français apprécié.
Responsabilités principales :
- Administration, exploitation et durcissement des forêts AD Corporate / Resources / Isolation.
- Gestion des contrôleurs de domaine (Windows Server 2019/2022), GPO, DNS, Sites & Services, réplication.
- Gestion d'Entra ID, IAM et AD Connect.
- Participation aux projets groupe : consolidation AD, refonte DNS, tiering, sécurisation des comptes sensibles.
- Automatisation via PowerShell, industrialisation des opérations (audits, provisioning, remédiation).
- Contribution au plan de reprise d'activité AD (détection, restauration, communication technique).
- Monitoring et audit : Change Auditor, EDR, collecte de logs.
- Participation à des projets transverses : M&A, intégration applicative, onboarding/offboarding, conformité sécurité.
- Documentation (DAT/DEX), contribution à la gouvernance AD.
Pay: $95.00-$100.00 per hour
Application question(s):
- Do you have 5+ years of hands-on experience with Active Directory and Entra ID (Azure AD)?
- Do you have experience working in hybrid AD environments (on-premises and cloud)?
- Do you have strong experience with AD Domain Services, DNS, GPO, PKI, and ADFS?
- Do you have hands-on experience with Entra ID, Azure AD Connect, and Identity Governance?
- Do you have advanced experience in PowerShell scripting for automation, auditing, and remediation?
- Do you have a strong understanding of security concepts such as RBAC, Zero Trust, MFA, and AD Tiering, along with experience in enterprise/critical environments?
- Are you a Canadian Citizen or Permanent Resident?
- Do you currently live near Montreal and are you willing to work 5 days onsite for this project?
Work Location: In person
