×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Systems Engineer Cybersecurity

Enterprise Directory Service SME

Job in Burlington, Chittenden County, Vermont, 05405, USA
Listing for: Akima Infrastructure Services, LLC
Full Time position
Listed on 2026-01-17
Job specializations:
  • IT/Tech
    Systems Engineer, Cybersecurity
Salary/Wage Range or Industry Benchmark: 60000 - 80000 USD Yearly USD 60000.00 80000.00 YEAR
Job Description & How to Apply Below

We are seeking a highly experienced Enterprise Directory Services Subject Matter Expert (SME) to support the United States Citizenship and Immigration Services (USCIS) enterprise IT environment. This senior‑level position plays a pivotal role in designing, optimizing, and advising on the modernization, operations, and integration of enterprise directory solutions within USCIS’s complex IT ecosystem.

The SME will provide expert‑level guidance in areas such as data center operations, cloud infrastructure, enterprise networking, systems architecture, virtualization, and cybersecurity compliance. This role also includes strategic input into enterprise modernization and transformation initiatives that align with DHS and USCIS mission objectives.

New contract award, join our winning team and apply now!

Responsibilities
  • Perform analysis of existing USCIS Active Directory environments and develop new solutions to take advantage of new technologies and best practices provided by the latest versions of Windows Server, including:
    • Privileged Remote Tool Server Administration Credential Partitioning
    • Active Directory Federation Services (ADFS)
    • Group Policy
    • Power Shell Desired State Configuration
    • Domain Trusts
    • Managing Azure Active Directory (Entra )
    • Automate the mapping of subnets to Active Directory sites and services
  • Lead architectural and design changes, modifications and advancements to the USCIS Active Directory infrastructure in collaboration with Operations for a seamless transition and delivery.
  • Design and lead the implementation of complex identity management solutions utilizing tools such as PKI, ADFS, Azure AD Connect, and Microsoft Identity Manager.
  • Architect, design, and lead the implementation of Enterprise Active Directory delegation models and provide technical assistance to facility administrators as required.
  • Develop and lead the implementation of potential USCIS Virtual Desktop solutions.
  • Work closely with internal teams to architect and lead the implementation of Group Policy Objects (GPOs), performance tuning as it relates to the latest Windows Desktop and Server Migration project(s).
  • Work with software vendors to identify, install and deploy USCIS business‑need software solutions involving AD LDAP authentication and delegation rights.
  • Provide architectural and engineering analysis of on‑premise and cloud solutions to ensure, where applicable, interdependent systems have consistent architectures and divergent architectures are evaluated for business value and removal of waste.
  • Architect and design secure disaster recovery for Active Directory production environment.
  • Act as a technical liaison between USCIS OIT customers and third‑party software/hardware vendors to deliver necessary solutions for the agency.
  • Participate in lifecycle planning of critical IT services, architecting and designing replacement solutions.
  • Architect solutions that integrate Azure AD Connect and Office‑365 Suite.
  • Establish and ensure all changes to the Group Policy Objects (GPOs) under Active Directory (AD) are controlled and documented.
  • Ensure GPO testing is completed prior to GPO changes to production.
  • Support enterprise backup and disaster recovery architecture, migration planning and implementation.
  • Architect DNS configuration, MS Clustering services, storage configuration, terminal services, TCP/IP protocol and LDAP services.
  • Provide architectural analysis of existing and new directory services to ensure that authentication flows are going to the appropriate service, including but not limited to:
    • Active Directory
    • ADFS
    • Azure AD (multiple and single tenant, commercial and Government)
    • Identity Credential and Access Management (ICAM)
    • AWS Identity and Access Management (commercial and Government)
  • Design and architect automated concentric circle deployment models for phased rollouts, including but not limited to:
    • Group policy
    • Patching
    • Software deployment
  • Architect and lead the implementation of new group policy changes to the AD structure, new Security Technical Implementation Guides (STIGs), new operating systems, or as directed due to security or higher headquarters mandates and exceptions.
  • Provide recommendations for new products and…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search