Directory Services Security Engineer page is loaded

Directory Services Security Engineer

Apply locations NJ-Jersey City time type Full time posted on Posted 2 Days Ago job requisition id JR2500431

Who we are

American International Group, Inc. (AIG) is a leading global insurance organization. AIG member companies provide a wide range of property casualty insurance in approximately 70 countries and jurisdictions. These diverse offerings include products and services that help businesses and individuals protect their assets and manage risks.

We’re also committed to making a positive difference for our colleagues and in the communities where we work and live. We encourage colleagues to give back to the causes they care most about, supporting these efforts through our Volunteer Time Off and Matching Grants Programs.

Get to know the business

At AIG, technology is at the heart of everything we do, from underwriting risks to processing claims. The Information Technology team equips our colleagues with the latest tools to complete their work efficiently and with the highest standards of excellence. The team is responsible for shielding the company’s systems from security risks, while designing technology strategies that enable AIG’s businesses to achieve their goals. AIG’s Information Technology functions include enterprise architecture, software and systems engineering, cybersecurity, and technology risk and compliance.

About the role

The Directory Services Security Engineer will be responsible for managing and supporting activities related to Active Directory security services, including Group Policies (GPO), Domain Name Services (DNS), and multiple Quest products, such as Change Auditor and Recovery Manager. In this role, you will be responsible for architecting, engineering and deployment of security solutions to solve complex challenges in our directory services and IAM environments. The Directory Services Security Engineer will be responsible for identifying opportunities to strengthen security, drive automation and promote being well managed. Other responsibilities include addressing security findings, analyzing large data sets in SIEM products such as Splunk and Snowflake or similar, and building reports in tools such as Enterprise Reporter. This role will provide you with an opportunity to help shape the direction of identity and directory security for AIG.

Responsibilities for this role include:

• Coordinate and/or implement new or enhanced security products and toolsets on supported platforms
• Participate in governance, audit and compliance support activities, as they pertain to identity and access management security
• Identify, define and implement continuous process improvements utilizing modern tools, technologies, and methodologies
• Architect, engineer, and deploy large-scale security initiatives in Active Directory / Entra ID including domain and application migrations between platforms
• Participate in implementation of large-scale security initiatives for new technologies being deployed globally
• Conduct regular configuration and security assessments of Active Directory and Azure and provide recommendations for changes based on industry standards and security guidelines utilizing tools such as Microsoft On-demand Assessment, Bloodhound, Purple Knight, etc.
• Monitor AD logs to identify any potential security incidents, respond to security findings, and develop and maintain incident response procedures
• Support large-scale Active Directory domain consolidations and domain migration activities with a security-based approach
• Perform health checks, discoveries and cleanup of Active Directory and Entra ID Infrastructure
• Analyze, review and manage Active Directory services such as DNS, Group Policy etc.
• Document platform technical issues, analysis, communications, and resolutions as reference for future issue resolution in SharePoint, Confluence, ServiceNow or similar medium.
• Develop documentation such as knowledge articles, How-to documents, and presentations for large audiences.
• Provide technical assistance, support and troubleshooting for IAM-related issues.
• Support team during incident management, problem management and disaster recovery activities

What we're looking for:

• 5+ years of Active Directory/Entra ID hands-on technical experience in an enterprise
• 4+ years supporting and implementing Active Directory security related products, such as Quest Change Auditor, Enterprise Reporter and Recovery Manager, or similar
• 4+ years of hands-on technical experience Identity and Access Management (IAM) on Active Directory.
• 3+ years of hands-on technical experience with tools
• 3+ years writing code, including scripts in languages such as PowerShell, Python, .NET, etc
• 2+ years performing AD Domain Clean ups, Domain and Forest Recovery activities, management of DNS, group policy objects, gMSA and security groups
• Basic knowledge of databases (SQL, Oracle) and scripting languages (e.g., PowerShell, JavaScript)
• Problem-solving mindset with a focus on delivering secure solutions.
• Self-starter who is proactive, motivated, and resourceful, takes ownership of their work, embraces challenges, and consistently strives for excellence.
• Ability to think strategically and drive business outcomes.
• Relevant certifications, such as CISSP, CISM, or other cloud security certifications, are a plus.
• Excellent written and verbal communication skills demonstrated by cross-functional team engagement, electronic communication, and program/process documentation
• Commitment to continuous learning and professional development around cloud technologies, automation, and AI

Additional experience that would be good to have:

• Technical hands-on experience in the following: Microsoft IAM, Oracle IAM, SailPoint IAM, IdP, AD, LDAP, Saviynt, RSA, Single Sign-On, OAuth, SAML, DNS, Google Cloud Platform, and Azure
• 3+ years working with SIEM solutions and hands-on usage of products such as Splunk and Snowflake
• 2+ years in developing solutions for automation via scripts or tools such as Ansible, Puppet, SCCM, etc.
• 1+ years leading large projects from beginning to end in an enterprise, spanning multiple businesses and regions globally

For positions based in Jersey City, NJ, the base salary range is $108,000-$135,000 and the position is eligible for a bonus in accordance with the terms of the applicable incentive plan. In addition, we’re proud to offer a range of competitive benefits, a summary of which can be viewed here: 2025 Benefits Summary

Ready to make a bigger impact? We look forward to reviewing your application.

At AIG, we value in-person collaboration as a vital part of our culture, which is why we ask our team members to be primarily in the office. This approach helps us work together effectively and create a supportive, connected environment for our team and clients alike.

Enjoy benefits that take care of what matters

At AIG, our people are our greatest asset. We know how important it is to protect and invest in what’s most important to you. That is why we created our Total Rewards Program, a comprehensive benefits package that extends beyond time spent at work to offer benefits focused on your health, wellbeing and financial security—as well as your professional development—to bring peace of mind to you and your family.

Reimagining insurance to make a bigger difference to the world

American International Group, Inc. (AIG) is a global leader in commercial and personal insurance solutions; we are one of the world’s most far-reaching property casualty networks. It is an exciting time to join us — across our operations, we are thinking in new and innovative ways to deliver ever-better solutions to our customers. At AIG, you can go further to support individuals, businesses, and communities, helping them to manage risk, respond to times of uncertainty and discover new potential. We invest in our largest asset, our people, through continuous learning and development, in a culture that celebrates everyone for who they are and what they want to become.

Welcome to a culture of belonging

We’re committed to creating a culture that truly respects and celebrates each other’s talents, backgrounds, cultures, opinions and goals. We foster a culture of inclusion and belonging through our flexible work arrangements, diversity and inclusion learning, cultural awareness activities and Employee Resource Groups (ERGs). With global chapters, ERGs are a cornerstone for our culture of inclusion. The diversity of our people is one of AIG’s greatest assets, and we are honored that our drive for positive change has been recognized by numerous recent awards and accreditations.

AIG provides equal opportunity to all qualified individuals regardless of race, color, religion, age, gender, gender expression, national origin, veteran status, disability or any other legally protected categories.

AIG is committed to working with and providing reasonable accommodations to job applicants and employees with disabilities. If you believe you need a reasonable accommodation, please send an email to

Functional Area: IT - Information Technology AIG Employee Services, Inc.