Cloud Solutions Engineer (Active Directory)

Job Summary

Gibson Dunn is a leading global law firm, advising clients on significant transactions and disputes. Our exceptional teams craft and deploy creative legal strategies that are meticulously tailored to every matter, however complex or high-stakes. The firm’s work is distinguished by a unique combination of precision and vision.

Based in New York or Washington D.C., the Cloud Solutions Engineer (Active Directory) will be responsible for designing, implementing, maintaining, and securing the organization’s Entra and Active Directory (AD) infrastructure. This role plays a key part in supporting identity and access management, ensuring high availability, and protecting critical directory services.

This role reports to the Director of IS Operations and collaborates with IT teams, Information Security, and business stakeholders to deliver reliable authentication and authorization services across the enterprise.

Responsibilities include:

• Designing, deploying, and maintaining Entra and Active Directory environments.
• Administering and troubleshooting AD objects, policies, replication, and DNS integration.
• Implementing and managing Group Policy Objects (GPOs) to enforce security and configuration standards.
• Monitoring AD health, performance, and security using appropriate tools and scripts.
• Supporting integration of AD/SSO with Microsoft and non-Microsoft cloud platforms (e.g., Azure AD, Office 365, GWS) and third-party SaaS platforms.
• Managing user, group, and computer accounts, including provisioning, deprovisioning, and access reviews.
• Performing regular audits of permissions, accounts, and group memberships to ensure compliance.
• Participating in disaster recovery planning, backup, and restore operations for the firm’s directory infrastructure.
• Responding to and resolving incidents, including account lockouts, authentication failures, and replication issues.
• Collaborating with cybersecurity teams to detect and remediate vulnerabilities and threats.
• Documenting architecture, processes, and changes.
• Providing technical guidance and training to IT staff.

Qualifications

• Strong knowledge of Windows Server, AD DS, DNS, DHCP, and Group Policy.
• Proficiency in PowerShell scripting and automation.
• Experience with identity management, authentication protocols (Kerberos, NTLM), and LDAP.
• Familiarity with cloud identity solutions (Azure AD, GWS, AWS Directory Service) and hybrid environments.
• Understanding of security best practices for AD, including privileged access management and auditing.
• Excellent troubleshooting, analytical, and communication skills.

Experience

• Bachelor’s degree in Computer Science, Information Technology, or related field (or equivalent experience).
• 3+ years of hands-on experience managing large-scale Active Directory environments.

 

Gibson Dunn will consider for employment qualified Applicants with Criminal Histories in a manner consistent with the requirements of local law.

Compensation & Benefits:

The annual compensation range for this position is $145-175k. The salary offered within this range will depend upon qualifications and other operational considerations.

Benefits offered for this position include health care; retirement benefits; paid days off, including sick time, and vacation time; parental leave; basic life insurance; Flexible Spending Accounts; as well as discretionary, performance-based bonuses.

Locations:

New York, Washington, D.C.

EEO Statement

Gibson Dunn & Crutcher LLP is committed to the principles of equal employment opportunity for all partners, employees and applicants and, in accordance with the applicable federal and state laws, does not discriminate on the basis of sex, race, creed, color, religion, matriculation or political affiliation, national origin, alienage or citizenship status, ancestry, age, marital status or partnership status, family responsibilities, disability, medical condition, personal appearance, genetic information, predisposing genetic characteristics, sexual orientation, military status, status as a victim of domestic violence, stalking and sex offenses, arrest or conviction record, or on any other basis prohibited by law.