Active Directory Operations Specialist, Senior

Requisition ID # 162160 

Job Category: Engineering / Science 

Job Level: Individual Contributor

Business Unit: Information Technology

Work Type: Hybrid

Job Location: Oakland

Department Overview

Cloud Security Center of Excellence is a unified organization comprised of various departments that collaborate effectively to deliver high-quality technology solutions.

Position Summary

We are seeking a highly skilled and experienced professional to join our team at PGE as an Active Directory Operations Specialist. The ideal candidate must have extensive knowledge and hands-on experience with Windows Active Directory and Global Policy Objects (GPOs). In this role, you will be responsible for managing and securing our enterprise infrastructure, ensuring compliance with security policies, and implementing best practices for identity and access management. You will work closely with cross-functional teams to design, deploy, and maintain secure and efficient directory services, as well as develop and enforce GPOs to enhance our organization's security posture. Strong analytical and problem-solving skills, along with excellent communication and leadership abilities, are essential for success in this position. If you are passionate about cybersecurity and have a proven track record in managing Windows Active Directory and GPOs, we encourage you to apply.

This position is hybrid, working from your remote office and  the Oakland General Office(OGO)based on business needs.

PG&E is providing the salary range that the company in good faith believes it might pay for this position at the time of the job posting. This compensation range is specific to the locality of the job. The actual salary paid to an individual will be based on multiple factors, including, but not limited to, specific skills, education, licenses or certifications, experience, market value, geographic location, and internal equity. Although we estimate the successful candidate hired into this role will be placed between the entry point and the middle of the range, the decision will be made on a case-by-case basis related to these factors.​ 

This job is also eligible to participate in PG&E’s discretionary incentive compensation programs.  

A reasonable salary range is:​

Bay Area Minimum:   $118,000   

Bay Area Maximum:  $188,000   

Responsibilities:

• Manage and maintain the Active Directory environment, ensuring its security and efficiency.
• Create, edit, and manage Group Policy Objects (GPOs) for endpoint configuration.
• Utilize Entra ID for identity and access management.
• Use Intune for mobile device management (MDM) and endpoint configuration.
• Automate tasks and manage configurations using PowerShell.
• Troubleshoot network protocols (TCP/IP, DNS, LDAP) and resolve related issues.
• Implement security best practices and manage vulnerabilities and patches.
• Adhere to change management processes and document all configurations and procedures.
• Communicate effectively with end-users, management, and other IT teams.
• Continuously learn and stay updated on the latest trends and technologies in the field.

Qualifications

Minimum:

• Bachelor’s degree in Computer Science, Information Technology, or a related field.
• 5 years of work experience with strong knowledge of Windows operating systems, GPOs, Entra ID, Intune, and PowerShell.

Desired:

• Minimum of 10 years of work experience with strong knowledge of Windows Active Directory, GPOs, and PowerShell.
• Proven experience in managing and troubleshooting Active Directory environments.
• Proven experience in managing, designing, and engineering Global Policy Objects in a large enterprise.
• Deep understanding of Windows 10 and 11 architectures, features, deployment techniques, policy management, and troubleshooting techniques.
• Proficiency in creating, editing, and managing GPOs for endpoint configuration. Familiarity with tools used for version control of GPOs.
• Strong knowledge of AD structure, user/group management, and security principles.
• Excellent problem-solving, communication, and documentation skills.
• Ability to work independently and as part of a team.

Process and Methodology Skills

• Adherence to a change management process to minimize disruptions and ensure proper documentation.
• Ability to diagnose and resolve technical issues efficiently.
• Effective communication skills to interact with end-users, management, and other IT teams.
• Meticulous documentation of configurations, procedures, and troubleshooting steps.
• Stay updated on the latest trends, technologies, and security best practices.

Desired Qualifications

• Bachelor’s degree in computer science, Information Technology, or a related field.
• Familiarity with Entra ID (formerly Azure AD) for identity and access management.
• Expertise in using Intune for mobile device management (MDM) and endpoint configuration.
• Proficiency in PowerShell or other scripting languages for automation and task management.
• Understanding of network protocols (TCP/IP, DNS, DHCP, LDAP) and troubleshooting.
• Knowledge of security best practices, vulnerability management, and patch management.
• Any of the following Microsoft certifications: Azure Administrator Associate, Azure Solutions Architect Expert, Azure Security Associate, Azure Identity and Access Administrator Associate.

#featuredjob