Windows Server & Active Directory Hybrid Cloud Architect

About Northern Trust:

Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.  

Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service.

Position Overview

We are seeking an experienced hands-on Windows Server & Active Directory Hybrid Cloud Architect to design, implement, and maintain our enterprise-wide infrastructure spanning on-premises and cloud environments. This role is critical in ensuring the security, scalability, and reliability of our financial institution's IT infrastructure.

Key Responsibilities

Architecture & Design

• Lead the architectural design and implementation of Windows Server infrastructure and Active Directory services across hybrid cloud environments

• Develop and maintain the technical roadmap for Windows Server infrastructure, considering business requirements, security compliance, and industry best practices

• Design highly available and disaster recovery solutions for critical infrastructure components

• Create and maintain infrastructure-as-code templates for automated deployments using tools like Azure ARM templates, PowerShell, and Terraform
   

Active Directory & Identity Management

• Architect and oversee the implementation of complex Active Directory infrastructure, including multi-forest/multi-domain environments

• Design and implement Azure AD Connect synchronization topologies and federation services

• Manage the integration between on-premises Active Directory and Azure Active Directory

• Develop and maintain Group Policy Objects (GPOs) and security baseline configurations

• Implement Privileged Access Management (PAM) and Just-In-Time (JIT) access solutions
   

Security & Compliance

• Ensure infrastructure compliance with financial industry regulations (SOX, PCI-DSS, GLBA)

• Design and implement zero-trust security architecture

• Maintain security controls for privileged access and identity management

• Conduct regular security assessments and implement remediation measures

• Design and implement PKI infrastructure and certificate management solutions
   

Cloud Integration

• Lead Azure infrastructure design and implementation initiatives

• Develop hybrid connectivity solutions using Azure ExpressRoute and Site-to-Site VPN

• Design and implement hybrid backup and disaster recovery solutions

• Optimize cloud resource utilization and cost management

• Implement cloud security controls and monitoring solutions
   

Team Leadership & Collaboration

• Mentor junior team members on infrastructure best practices and emerging technologies

• Collaborate with application teams to ensure infrastructure meets application requirements

• Work with security teams to implement and maintain security controls

• Provide technical leadership in incident response and problem resolution

• Partner with vendor teams for solution implementation and support

Required Qualifications

• Bachelor's degree in Computer Science, Information Technology, or related field

• 10+ years of experience in Windows Server infrastructure design and implementation

• 7+ years of experience with Active Directory design and administration

• 5+ years of experience with Azure cloud services and hybrid infrastructure

• Expert knowledge of PowerShell scripting and automation

• Strong understanding of PKI, DNS, DHCP, and other core infrastructure services

• Experience with infrastructure-as-code and configuration management tools

• Deep knowledge of security best practices and compliance requirements
   

Preferred Qualifications

• Master's degree in relevant field

• Microsoft Certified: Azure Solutions Architect Expert

• Microsoft 365 Certified: Enterprise Administrator Expert

• Experience in financial services industry

• Knowledge of container technologies and microservices architecture

• Experience with DevOps practices and tools

• CISSP or equivalent security certification
   

Technical Skills

• Windows Server 2016/2019/2022

• Active Directory Domain Services

• Azure Active Directory

• Group Policy Management

• PowerShell Scripting

• Azure Infrastructure Services

• Infrastructure as Code (Terraform, ARM templates)

• PKI and Certificate Services

• Azure ExpressRoute and Site-to-Site VPN

• Microsoft System Center Suite

• Azure Security Center/Microsoft Defender for Cloud

• Azure Monitor and Log Analytics

• Backup and Disaster Recovery Solutions
   

Working Conditions

• Full-time position - at least 3 days in the office

• May require after-hours work for maintenance and upgrades

• On-call rotation for critical infrastructure support

Salary Range:

Salary range is a good faith estimate of base pay. Northern Trust provides a comprehensive benefits package including retirement benefits (401k and pension), health and welfare benefits (medical, dental, vision, spending accounts and disability), paid time off, parental and caregiver leave, life & accident insurance, and other voluntary and well-being benefits. Northern Trust also provides a discretionary bonus program that may include an equity component.

Working with Us: 

As a Northern Trust partner, greater achievements await. You will be part of a flexible and collaborative work culture in an organization where financial strength and stability is an asset that emboldens us to explore new ideas.

Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to assisting the communities we serve! Join a workplace with a greater purpose.

We’d love to learn more about how your interests and experience could be a fit with one of the world’s most admired and sustainable companies! Build your career with us and apply today. #MadeForGreater 

Reasonable accommodation

Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at MyHRHelp@ntrs.com.

 
We hope you’re excited about the role and the opportunity to work with us. We value an inclusive workplace and understand flexibility means different things to different people.

Apply today and talk to us about your flexible working requirements and together we can achieve greater.