AD Architect

We are seeking a Senior / Expert Active Directory Specialist to own the design, security, and continuous evolution of our global Active Directory landscape across separated IT and OT domains.

• Design, operate, and continuously improve complex, multi-domain Active Directory environments in a global enterprise setup.
• Architect and manage clearly separated IT and OT domains, ensuring secure segmentation and controlled trust relationships.
• Guide and mentor system engineers in secure Active Directory design, operational best practices, and privileged access management.
• Further develop and enforce the Active Directory Tiering Model, including privileged access concepts and administrative boundary protection.
• Lead remediation of security findings within existing domains, ensuring sustainable corrective measures and audit readiness.
• Implement and maintain AD hardening standards aligned with cybersecurity frameworks and internal policies.
• Ensure high availability, disaster recovery capability, and performance optimization of directory services.
• Oversee Group Policy design, replication health, DNS integration, and authentication services.
• Support hybrid identity integration (e.g., Entra ID / Azure AD) where applicable.
• Act as highest escalation level for complex AD incidents and security-related events.
• Collaborate closely with Cybersecurity, Infrastructure, and OT teams globally.
• Support internal and external audits in a regulated (GxP) environment.

• Contract: 6 months (high possibility to Extension)
• Location: Basel-Country, 2 days Home Office
• Skills: Active Directory, IT, OT, Architecture.

• 5+ years of hands-on experience in enterprise Active Directory environments.
• Proven experience designing and operating segregated IT and OT domains in complex organizations.
• Strong expertise in:
  • AD security hardening and remediation
  • Tiering models and privileged access strategies
  • Multi-forest/domain architecture
  • Group Policy and authentication protocols
• Experience managing remediation programs for security findings in large environments.
• Strong understanding of cybersecurity principles and risk mitigation in regulated industries.
• Structured, documentation-driven working style with audit readiness mindset.
• Experience in pharmaceutical, biotech, manufacturing, or other regulated industries.
• Fluent in English; German is beneficial.

Due to regulatory requirements, only candidates holding Swiss or EU/EFTA citizenship can be considered for this position.