The
Senior Active Directory & Exchange Engineer role focuses on managing, securing, and optimizing our Active Directory and Exchange 2019 environment. This includes administering Microsoft Active Directory infrastructure to ensure operational efficiency is maintained, compliance with security policies, and alignment with business needs.
The ideal candidate will have a proven track record in designing, implementing, and managing Microsoft Exchange Online and hybrid Exchange 2019 environments. In this role, you will be responsible for ensuring the security, reliability, and performance of cloud-based messaging services for enterprise clients. The engineer will develop platform roadmaps for Exchange upgrades across multiple domains, maintain optimal mail flow operations, and document configurations & policies thoroughly.
The best candidate will be a team player possessing strong analytical and technical skills. The individual in this role must be able to communicate ideas clearly and effectively to both technical non-technical stakeholders. This individual will be required to maintain thorough documentation for configurations, policies, and procedures.
Primary Responsibilities and Essential Functions
- Perform tenant level administration, policy configuration, and top-level support for enterprise-wide initiatives that integrate with Microsoft 365, including Microsoft Entra ID/Azure Active Directory, Exchange Online, and Exchange 2019 on-prem servers.
- Oversee and maintain AD infrastructure, including over 50+ Windows 2019/2022 domain controllers hosted in VMware vSphere ESXi, replication, and numerous domain trust relationships.
- Implement and enforce Windows Group Policies on-prem and via Intune to ensure consistent and secure configurations across the enterprise
- Perform regular audits of AD to ensure compliance with security policies and remediate stale objects, orphaned accounts, and unused policies.
- Develop and implement Active Directory strategies, including domain consolidation, upgrades, and migrations
- Administer Azure AD Connect, lead the troubleshooting and resolution of authentication, Active Directory, and/or Azure AD Connect issues, providing tier-3 support as needed.
- Review and ensure the day-to-day availability of email related services like Exchange Online, Exchange 2019, ProofPoint, as well as management of email security features, such as SPF, DMARC, DKIM, and Exchange Online Protection in Defender.
- Administer and support Exchange Online Protection (EOP), anti-spam, anti-malware policies, data loss prevention (DLP), and compliance configurations.
- Monitor, troubleshoot, and resolve Exchange Online service issues, including mail flow, hybrid connectivity, and client access problems.
- Identify and remediate security vulnerabilities for Windows Server 2019/2022 OS and Exchange Server 2019
- Provide On-Call support in a 24x7x365 enterprise environment.
- Creates and maintains knowledge base, configuration, and support documentation.
- Execute routine AD maintenance tasks, including backing up and restoring Active Directory and disaster recovery operations.
Minimum Qualifications
- BS/BA degree in related discipline in a related discipline and 4+ years of experience in a related field; or equivalent work experience.
- 4+ years of hands-on operational experience with a complex Microsoft Active Directory environment with multiple forests, domains, & trust relationships; Azure Active Directory (AAD)/ Entra ID, AAD Connect, and Microsoft 365 services, including direct management of domain controllers, LDAP Servers, managing conditional access policies, multi-factor authentication, and Self-Service Password Reset
- Strong understanding in Active Directory, IIS, Group Policy, DNS, DHCP, LDAP, network load balancing, and related technologies
- Demonstrated advanced proficiency with Microsoft PowerShell scripting and automation of AD tasks.
- 4+ years of management and administration experience over hybrid Exchange 2019 environment, including database availability groups, Exchange server version upgrades, mailbox migration from on-prem to Exchange Online, configuring SMTP/IMAP, and managing mail flow
- Solid knowledge and experience with e-mail encryption, SPF/DKIM/DMARC, retention policies, and other security measures.
- Strong work ethic, with a passion to determine root cause of problems/issues.
- Demonstrated continuous learning to stay updated with latest advancements, new features, and industry trends.
- Excellent written and oral communication skills.
- Able to effectively prioritize work based on business and/or customer impact.
Preferred Experience and Qualifications
- Experience supporting large scale enterprise with several domains and/or multi-tenant environment
- Experience with Microsoft Identity Management (MIM), including custom development
- Familiarity with ServiceNow and Change/Incident Management practices
- Managing the following Microsoft 365 components:
- Microsoft Purview
- Microsoft Defender
- Microsoft certifications such as MS-203: Microsoft 365 Messaging, or equivalent
- Experienced in ProofPoint Email Gateway Administration
USD 90,100.00 - 150,100.00 per year
Compensation:
Compensation includes a base salary of $90,100.00 - $150,100.00. The base salary may vary within the anticipated base pay range based on factors such as the ultimate location of the position and the selected candidate's knowledge, skills, and abilities. Position may be eligible for additional compensation that may include an incentive program.
Benefits:
The Company offers eligible employees the flexibility to take as much vacation with pay as they deem consistent with their duties, the company's needs, and its obligations; seven paid holidays throughout the calendar year; and up to 160 hours of paid wellness annually for their own wellness or that of family members. Employees are also eligible for additional paid time off in the form of bereavement leave, time off to vote, jury duty leave, volunteer time off, military leave, and parental leave.
|
Cox
$90,100.00 - $150,100.00 / yr
parental leave, paid time off, paid holidays
Nov 18, 2025