Senior Directory Infrastructure Engineer

Veterans Management Services, Inc. (VMSI) is seeking a highly experienced Senior Directory Infrastructure Engineer to support a government Security and Engineering Team in Washington, DC. This senior-level role will support complex projects involving enterprise identity infrastructure, including Active Directory, Entra ID (formerly Azure AD), OKTA Universal Directory, and LDAP. The ideal candidate will have a strong background in domain lifecycle management and modern identity solutions such as Privileged Identity Management (PIM), Just-In-Time (JIT) access, and Zero Trust architectures.

Key Responsibilities:

• Design, implement, and maintain robust enterprise directory services infrastructure.
• Lead full lifecycle management of Active Directory domains: planning, deployment, upgrades, and decommissioning.
• Manage domain consolidation, forest restructuring, and migration initiatives.
• Implement proactive monitoring and maintenance procedures for directory health and availability.
• Create and execute disaster recovery and business continuity plans related to identity infrastructure.
• Develop automation scripts in PowerShell to support directory operations.
• Integrate with Microsoft GraphAPI and REST APIs for customized identity service operations.
• Ensure security compliance and best practices across all directory services.
• Design, maintain, and monitor trust relationships between domains and forests.
• Provide Tier 3+ escalation support for directory service-related incidents.
• Maintain accurate and up-to-date documentation of architecture and operational processes.

Required Qualifications:

• 5+ years of hands-on experience with enterprise directory infrastructure.
• Expertise with Active Directory, Entra ID (Azure AD), OKTA Universal Directory, and LDAP.
• Demonstrated experience in domain lifecycle management, including creation, upgrades, migrations, and decommissioning.
• Advanced PowerShell scripting capabilities for task automation.
• Experience with Microsoft GraphAPI and REST API integrations.
• Proficiency with directory synchronization tools like Azure AD Connect and OKTA agents.
• Strong understanding of identity security frameworks and compliance standards.
• Experience working in hybrid and multi-forest environments.
• Ability to design and deliver complex directory architecture solutions.

Preferred Qualifications:

• Relevant certifications such as:
• Microsoft 365 Certified: Identity and Access Administrator
• OKTA Professional
• Experience with Infrastructure as Code tools (e.g., Terraform, Ansible).
• Familiarity with CI/CD pipelines for identity/infrastructure automation.
• Deep knowledge of modern authentication protocols (SAML, OAuth, OIDC).
• Experience with Group Policy, domain controller optimization, and functional level upgrades.
• Background in Zero Trust implementation and strategy.

Clearance Requirement:

• Must be eligible to pass a public trust or background investigation as required by the client

About VMSI:

Veterans Management Services, Inc. (VMSI) is a Service-Disabled Veteran-Owned Small Business (SDVOSB) dedicated to providing exceptional consulting services to our federal clients. Specializing in IT Services, Acquisition Support, Program Management, and Security Solutions, VMSI prides itself on delivering results with integrity, excellence, and respect. We support our employees through a collaborative culture and meaningful work on high-impact government initiatives.