×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Lead Active Directory Engineer

Job in Wilmington, New Castle County, Delaware, 19894, USA
Listing for: M&T Bank Corporation
Full Time position
Listed on 2026-06-06
Job specializations:
  • IT/Tech
    Cybersecurity
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below
* Proven expertise supporting
** large-scale, Tier‐1 identity infrastructures
** with strict uptime, latency, and change‐control requirements
* Strong experience with:  + Multi-domain and multi-forest designs aligned to business units, regions, or regulatory boundaries  + Forest and external trusts supporting M&A, joint ventures, and third-party integrations  + FSMO role placement optimized for resilience and auditability
* Advanced understanding of
** Active Directory–integrated DNS**, split‐brain DNS, and secure name resolution models
* Extensive experience integrating on-prem AD with
** Microsoft Entra
** in regulated financial environments
* Hands-on implementation of:  + Entra Connect (Cloud Sync and Traditional)  + Password Hash Sync, Pass-through Authentication, and Federation
* Strong experience with:  + Conditional Access aligned to regulatory and risk-based controls  + Hybrid Join, Entra , and legacy device coexistence
* Understanding of
** identity lifecycle controls
** to support joiners, movers, leavers, and separation-of-duties requirements
- Expert-level knowledge of
** Active Directory security hardening
** in financial services, including:  
* Tiered administrative model (Tier 0/1/2)  
* Dedicated admin forests or hardened admin boundaries (where applicable)  
* Privileged Access Workstations (PAWs) / Secure Admin Workstations Experience enforcing
** least privilege**, role separation, and
** dual‐control
** models
- Deep familiarity with threats targeting financial institutions:  
* Credential theft, Kerberoasting, Pass-the-Hash/Ticket  
* Delegation and ACL abuse
- Hands-on experience with:  
* Privileged Identity Management (PIM)  
* Regular access reviews and entitlement recertification
- Demonstrated experience supporting audits and controls for financial regulations and frameworks, such as:  
* SOX, GLBA, PCI DSS, SOC 2  
* Internal risk management and model governance requirements
- Ability to design AD environments that support:  
* Strong logging and traceability  
* Tamper-resistant audit logs  
* Evidence generation for internal and external auditors
- Experience building automation that integrates with:  
* Change management processes  
* IAM, ticketing, and security tooling
* Strong understanding of:  + AD backup, recovery, and
** authoritative restore procedures**  + Identity disaster recovery scenarios with defined RTO/RPO
* Experience implementing
** monitoring and alerting
** with a focus on early risk detection
- Deep experience managing:  
* AD replication topology across data centers and regions  
* SYSVOL (DFSR) health and recovery  
* Latency-sensitive authentication dependencies
* Advanced understanding of the security system development and infrastructure lifecycle and architecture, and systems design
* Proven experience with the development and customization of tools utilized in assigned Cybersecurity function
* Demonstrated ability to translate architecture into technical requirements
* Proficient level of critical thinking and problem solving ability
* Excellent communication and interpersonal skills
* Experience partnering with leaders to design solutions to business needs.
* Proficient persuasive communication skills to gain buy-in of others
* Strong ability to analyze and draw reliable conclusions based on large volumes of quantitative data from diverse sources
* Ability effectively serves in indirect leadership role Great companies have an enduring sense of purpose. At M&T, our purpose is a simple one:
** make a difference in people’s lives and uplift the communities we serve**. M&T Bank Corporation is a financial holding company headquartered in Buffalo, New York. M&T’s affiliates offer advice, guidance, expertise and solutions across the entire financial spectrum, combining M&T Bank’s traditional banking services with the wealth management and institutional capabilities offered by Wilmington Trust. M&T Bank has a network of over 1,000 branches and 2,200 ATMs that span 12 states from Maine to Virginia and Washington, D.C. For more than 165 years, M&T has strived to take an active role in our communities and build long-lasting relationships with our customers.

We are a bank for communities—combining the capabilities of a large bank with the care of a locally focused institution.
#J-18808-Ljbffr
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search