Job Description
            
                _Job Seekers can review the Job Applicant Privacy Policy by clicking here (http://ryder.com/job-applicant-privacy-policy) ._
**Job Description** :
**General Summary**
The Senior Directory Services Engineer is responsible for the design, engineering, and operational leadership of enterprise directory services.
This position combines advanced technical expertise with strategic oversight to ensure the stability, scalability, and security of directory platforms across multiple environments and entities.
The role requires deep knowledge of Active Directory and other directory platforms, strong problem-solving skills, and proven experience leading technical initiatives and projects involving complex efforts such as multi-forest management, M&A integrations, hybrid cloud adoption, modernization of legacy environments, and decommissioning of outdated infrastructure.
The senior engineer acts as a subject matter expert and technical leader within the Identity and Access Management function.
**Duties and Responsibilities**
+ Owns the engineering, design, and lifecycle management of directory services platforms including Active Directory, Azure Active Directory, and other cloud-based directory platforms, across multiple environments and entities, along with supporting technologies (Sites and Services, Group Policy, PKI).
+ Manages multi-forest architectures and cross-entity trust relationships to ensure seamless authentication and authorization across organizations, including integration of directory services during mergers and acquisitions, with a focus on coexistence, migration planning, post-migration stabilization, decommissioning, and documentation and knowledge transfer to ensure continuity and support.
+ Provides leadership in establishing technical standards, architectural roadmaps, and operational best practices for directory services, including ongoing system health monitoring, maintenance, and capacity planning.
+ Leads resolution of complex or escalated issues related to authentication, replication, trusts, or integration with enterprise systems.
+ Partners with networking and security teams to ensure directory services align with security, compliance, and business requirements.
+ Develops and maintains automation for provisioning, monitoring, reporting, and validation to improve efficiency and reduce risk.
+ Guides and mentors junior engineers with a focus on technical guidance and serves as an escalation point for directory-related support.
+ Participates in planning and execution of strategic initiatives such as forest/domain redesign, modernization of legacy domain functional levels, hybrid cloud identity adoption, and cross-platform integrations.
**Knowledge, Skills, and Abilities**
+ Advanced expertise in directory services architecture, replication, and troubleshooting, with emphasis on Active Directory and related platforms.
+ Strong understanding of directory technologies and supporting services such as Group Policy, Kerberos, trusts, and PKI.
+ Proficiency with PowerShell and automation frameworks.
+ Experience with Azure Active Directory and hybrid identity solutions across multi-cloud environments.
+ Familiarity with identity federation and modern authentication protocols (SAML, OIDC, OAuth).
+ Knowledge of multi-forest and multi-entity trust models, migrations, and consolidations.
+ Ability to balance technical execution with architectural planning and standards development.
+ Strong analytical, communication, and leadership skills.
+ Ability to provide strategic input while maintaining hands-on ownership of critical directory services.
**Education and Experience**
+ Bachelor’s degree in Computer Science, Information Systems, or related field, or equivalent work experience.
+ Typically requires 7 or more years of experience with directory services in large-scale, multi-entity enterprise environments.
+ Demonstrated experience leading directory services projects or initiatives with enterprise impact, including migrations, integrations, consolidations, and modernization of legacy environments.
+ Industry certifications (MCSE, Microsoft Certified: Identity and Access Administrator Associate, Azure Solutions Architect, or other relevant Microsoft and cloud directory certifications) preferred.
**Job Category:**  Information Security
**Compensation Information** :
The compensation offered to a candidate may be influenced by a variety of factors, including the candidate’s relevant experience; education, including relevant degrees or certifications; work location; market data/ranges; internal equity; internal salary ranges; etc.
The position may also be eligible to receive an annual bonus, commission, and/or long-term incentive plan based on the level and/or type.
Compensation ranges for the position are below:
**Pay Type** :
Salaried
Minimum Pay Range:
$120,000.00
Maximum Pay Range:
$140,000.00
**Benefits Information** :
**For all Full-time positions only** : Ryder offers comprehensive health and welfare benefits, to include medical, prescription, dental, vision, life insurance and disability insurance options, as well as paid time off for vacation, illness, bereavement, family and parental leave, and a tax-advantaged 401(k) retirement savings plan.
For more information about benefits, click here (https://ryder.icims.com/icims2/servlet/icims2?module=AppInert&action=download&id=4022345&hashed=256118533)  to download the comprehensive benefits summary.
Ryder is proud to be an Equal Opportunity Employer and Drug Free workplace.
All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, gender identity, age, status as a protected veteran, among other things, or status as a qualified individual with disability.
**Important Note**  **:**
Some positions require additional screening that may include employment and education verification; motor vehicle records check and a road test; and/or badging or background requirements of the customer to which you are assigned.
Security Notice for Applicants:
Ryder will only communicate with an applicant directly from a [@ryder.com] email address and will never conduct an interview online through a chat type forum, messaging app (such as WhatsApp or Telegram), or via an online questionnaire.
 During an interview, Ryder will never ask for any form of payment or banking details and will never solicit personal information outside of the formal submitted application through  www.ryder.com/careers .
Should you have any questions regarding the application process or to verify the legitimacy of an interview or Ryder representative, please contact Ryder at  careers@ryder.com  or 800-793-3754.
**Current Employees**  **:**
If you are a current employee at Ryder, please click here (http://wd5.myworkday.com/ryder/d/task/1422$3.htmld)  to log in to Workday to apply using the internal application process.
_Job Seekers can review the Job Applicant Privacy Policy by clicking here (http://ryder.com/job-applicant-privacy-policy) ._
#wd