Enable job alerts via email!
Security Engineer Active Directory
Standard Bank Group
Johannesburg
On-site
ZAR 500,000 - 800,000
Full time
2 days ago
Be an early applicant
Job summary
A leading financial services group in Johannesburg is seeking an experienced individual to manage and secure Microsoft Active Directory and Azure AD environments. The role requires effective communication, a security-first mindset, and strong technical skills in identity and access management. Ideal candidates should have 5–7 years' experience with enterprise AD environments and relevant certifications.
Qualifications
- Minimum 5–7 years’ experience in an enterprise AD environment.
- Proven ability to secure identity infrastructure in large environments.
- Experience with identity and access incident response.
Responsibilities
- Administer and secure Microsoft Active Directory environments.
- Manage Azure Active Directory and its features.
- Configure and maintain Conditional Access and Identity Protection.
Skills
Microsoft Active Directory (2016–2022)
Azure AD
PowerShell scripting
Incident response
Clear communication
Security-first mindset
Cross-functional teamwork
Education
Bachelor's Degree in Computer Science
Microsoft Certified: Identity and Access Administrator Associate
CompTIA Security+
Tools
Azure Security Engineer Associate
Quest One
CyberArk
Job description
Company Description
Standard Bank Group is a leading Africa-focused financial services group, and an innovative player on the global stage, that offers a variety of career-enhancing opportunities – plus the chance to work alongside some of the sector’s most talented, motivated professionals. Our clients range from individuals, to businesses of all sizes, high net worth families and large multinational corporates and institutions. We’re passionate about creating growth in Africa. Bringing true, meaningful value to our clients and the communities we serve and creating a real sense of purpose for you.
Job Description
Directory Services Operations
Technical Skills
Behavioural Competencies:
Standard Bank Group is a leading Africa-focused financial services group, and an innovative player on the global stage, that offers a variety of career-enhancing opportunities – plus the chance to work alongside some of the sector’s most talented, motivated professionals. Our clients range from individuals, to businesses of all sizes, high net worth families and large multinational corporates and institutions. We’re passionate about creating growth in Africa. Bringing true, meaningful value to our clients and the communities we serve and creating a real sense of purpose for you.
Job Description
Directory Services Operations
- Administer and secure Microsoft Active Directory environments across multiple domains and forests.
- Manage Azure Active Directory, including synchronization with on-prem AD, Conditional Access, and identity protection features.
- Support and enforce Group Policy Objects (GPOs), DNS, DHCP, and AD replication health.
- Troubleshoot and resolve authentication, access, and directory-related issues.
- Implement and maintain security controls aligned to best practices and internal standards (e.g.Least Privilege, Tiering Models, Admin Boundaries).
- Manage privileged access using tools like Quest One/Privileged Management Suite, or similar.
- Participate in audits, respond to compliance requirements, and provide documentation as required.
- Monitor and report on directory service health, unauthorized changes, and security incidents.
- Support Azure AD Connect, SSO, and federation services (e.g., Azure Application Proxy or third-party providers)
- Configure and maintain Conditional Access, Identity Protection, and Application Proxy.
- Work closely with cloud and security teams to enable secure access to cloud workloads and SaaS apps.
- Support Active Directory Cloud environments for various regions in AWS.
- Contribute to or lead Active Directory and IAM-related projects, including domain migrations, M&A integration, and automation efforts.
- Assist in deploying modern identity governance solutions and Zero Trust initiatives.
- Participate in cross-functional initiatives involving AD security, network segmentation, or endpoint hardening.
- Maintain runbooks and operational documentation for AD tasks.
- Handle Remedy (or ITSM platform) request queues and incident resolution within SLA.
- Provide technical mentorship to junior staff and peer support across teams.
Technical Skills
- Strong experience with Microsoft Active Directory (2016–2022) and Azure AD.
- Familiar with Entra ID, LDAP, Kerberos, SAML, OAuth, and certificate-based
- authentication.
- Experience with PowerShell scripting for automation and auditing.
- Exposure to IAM and PAM solutions (e.g., Quest One, CyberArk, BeyondTrust).
- Familiarity with Defender for Identity, conditional access, and identity threat detection tools.
- Minimum 5–7 years’ experience in an enterprise AD environment.
- Demonstrated track record of securing and maintaining identity infrastructure in large or
- regulated environments.
- Experience with incident response and audit preparation related to identity and access.
- Clear communicator with strong documentation habits.
- Security-first mindset with a good sense of risk vs. practicality.
- Comfortable working in cross-functional teams and supporting business stakeholders.
- Proactive, detail-oriented, and able to work under pressure.
- Bachelors Degree in Computer Science (advantageous)
- Microsoft Certified: Identity and Access Administrator Associate (SC-300)
- Microsoft Certified: Azure Security Engineer Associate
- CompTIA Security+, CISSP, or equivalent a plus
- MCSE or Equivalent
Behavioural Competencies:
- Articulating Information
- Challenging Ideas
- Developing Expertise
- Developing Strategies
- Embracing Change
- Empowering Individuals
- Examining Information
- Exploring Possibilities
- Interacting with People
- Making Decisions
- Showing Composure
- Team Working
- Incident and Problem Management
- Information Security Management
- IT Design Driven Development
- IT Knowledge
- Service Management Processes
- Technical Analysis
- Trouble Shooting
- Use of Build and Test Automation
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Land a better
job faster
job faster
Follow us
