Job Title: Active Directory Specialist
Job Location: Sleepy Hollow, New York, USA
** Please note, this role is not able to offer visa transfer or sponsorship now or in the future**
We are seeking an experienced Active Directory / Azure AD (Microsoft Entra ID) Specialist to support and manage enterprise Directory Services operations within a large-scale hybrid identity environment. The ideal candidate will have strong hands-on expertise in On-Prem Active Directory, Microsoft Entra ID (Azure AD), Azure AD Connect, DNS, Certificates, Identity & Access Management, and Directory Services Operations.
The role requires extensive experience in troubleshooting authentication and access-related issues, managing Active Directory infrastructure, maintaining hybrid identity synchronization, supporting security and compliance initiatives, and ensuring the availability and performance of mission-critical directory services.
Experience supporting regulated environments with knowledge of GxP compliance is highly preferred.
In this role, you will
Administer and support enterprise Active Directory and Microsoft Entra ID (Azure AD) environments, ensuring high availability, security, and performance.
Manage user, group, computer, and service accounts, including provisioning, deprovisioning, and access control activities.
Support and troubleshoot Azure AD Connect synchronization, hybrid identity, authentication, and Single Sign-On (SSO) issues.
Administer and maintain AD-integrated DNS, public DNS (Cloudflare), domain registrations, renewals, and DNS security.
Manage PKI and Certificate Services, including Internal CA and external certificates (Sectigo), renewals, and troubleshooting.
Monitor and resolve Active Directory replication, Group Policy (GPO), authentication, LDAP, Kerberos, and permissions-related issues.
Provide advanced support for critical P1/P2 incidents, perform root cause analysis, and implement preventive measures.
Perform Active Directory health checks, Domain Controller maintenance, patching, OS updates, backup validation, and recovery activities.
Manage AD security tools including Quest RMAD, Quest Change Auditor, password auditing, and identity security monitoring solutions.
Support disaster recovery and business continuity testing, including Domain Controller recovery, AD object restoration, and failover validation.
Collaborate with application teams to onboard new applications and implement directory integrations using LDAP, Kerberos, certificate-based authentication, and standard identity patterns.
Drive continuous improvement initiatives by identifying operational gaps, documenting procedures, recommending best practices, and partnering with stakeholders to enhance directory services operations.
What you’ll need to succeed (required skills)
Bachelor's degree in Information Technology, Computer Science, or related discipline.
8+ years of experience administering Active Directory environments.
5+ years of experience supporting Microsoft Entra ID (Azure AD) and Azure AD Connect.
Strong hands-on experience with:
Active Directory (On-Premises)
Microsoft Entra ID (Azure AD)
Azure AD Connect
DNS Administration
Cloudflare DNS
Group Policy (GPO)
Identity & Access Management (IAM)
Certificate Services / PKI
Experience supporting hybrid identity environments.
Strong troubleshooting skills across authentication, synchronization, and access management issues.
Experience with incident management, problem management, and root cause analysis.
Excellent client-facing communication skills.
Required Technical Skills
Mandatory
Active Directory Administration
Microsoft Entra ID (Azure AD)
Azure AD Connect
DNS Administration (AD Integrated & Cloudflare)
Group Policy Management
Hybrid Identity Management
Certificate Services / PKI
Incident & Problem Management
Authentication & Authorization Troubleshooting
Active Directory Replication
Preferred Qualifications
Experience with Quest RMAD.
Experience with Quest Change Auditor.
Experience managing Sectigo certificates.
Knowledge of DFS (Distributed File Services).
Experience in pharmaceutical, healthcare, or regulated industries.
Familiarity with GxP compliance requirements.
Microsoft certifications related to Entra ID, Identity Management, Azure, or Windows Server Administration.
Benefits: Cognizant offers the following benefits for this position, subject to applicable eligibility requirements:
Medical/Dental/Vision/Life Insurance
Paid holidays plus Paid Time Off
401(k) plan and contributions
Long-term/Short-term Disability
Paid Parental Leave
Employee Stock Purchase Plan
Work model:
At Cognizant, we strive to provide flexibility wherever possible, and we are here to support a healthy work-life balance though our various wellbeing programs. Based on this role’s business requirements, this is an onsite role requiring 5 days a week at client site in Sleepy Hollow, New York, USA.
The working arrangements for this role are accurate as of the date of posting. This may change based on the project you’re engaged in, as well as business and client requirements. Rest assured; we will always be clear about role expectations.
We're excited to meet people who share our mission and can make an impact in a variety of ways. Don't hesitate to apply, even if you only meet the minimum requirements listed. Think about your transferable experiences and unique skills that make you stand out as someone who can bring new and exciting things to this role.
Disclaimer: The salary, other compensation, and benefits information is accurate as of the date of this posting. Cognizant reserves the right to modify this information at any time, subject to applicable law.
“Cognizant is an equal opportunity employer. Your application and candidacy will not be considered based on race, color, sex, religion, creed, sexual orientation, gender identity, national origin, disability, genetic information, pregnancy, veteran status or any other characteristic protected by federal, state or local laws.
Über Cognizant
Cognizant (NASDAQ: CTSH) i ist ein Technologiedienstleister und Entwickler von KI-Lösungen. Wir schlagen die Brücke zwischen KI-Investitionen und echtem unternehmerischem Mehrwert, indem wir ganzheitliche Full-Stack-KI-Lösungen für unsere Kunden entwickeln. Mit unserer fundierten Branchen-, Prozess- und Engineering-Expertise integrieren wir die spezifischen Anforderungen von Unternehmen passgenau in Technologiesysteme. So entfalten wir das menschliche Potenzial, erzielen greifbare Ergebnisse und sichern globalen Unternehmen in einer sich rasant wandelnden Welt den entscheidenden Vorsprung. Erfahren Sie mehr unter cognizant.ai oder @cognizant.
Zusätzliche Informationen zur Beschäftigung
Die Vergütungsinformationen sind zum Zeitpunkt der Veröffentlichung dieser Stellenausschreibung korrekt. Cognizant behält sich das Recht vor, diese Informationen jederzeit unter Beachtung der geltenden gesetzlichen Bestimmungen zu ändern.
Bewerberinnen und Bewerber können verpflichtet sein, an Vorstellungsgesprächen persönlich oder per Videokonferenz teilzunehmen. Darüber hinaus kann es erforderlich sein, bei jedem Gespräch einen gültigen staatlichen Lichtbildausweis vorzulegen.
Cognizant ist ein Arbeitgeber mit Chancengleichheit. Ihre Bewerbung und Kandidatur werden nicht aufgrund von Rasse, Hautfarbe, Geschlecht, Religion, Glaubensbekenntnis, sexueller Orientierung, Geschlechtsidentität, nationaler Herkunft, Behinderung, genetischen Informationen, Schwangerschaft, Veteranenstatus oder sonstiger durch bundes‑, landes‑ oder kommunalrechtliche Vorschriften geschützter Merkmale berücksichtigt oder abgelehnt.







