Senior Directory Services Architect

At Genworth, we empower families to navigate the aging journey with confidence. We are compassionate, experienced allies for those navigating care with guidance, products, and services that meet families where they are. Further, we are the spouses, children, siblings, friends, and neighbors of those that need careand we bring those experiences with us to work in serving our millions of policyholders each day. We apply that same compassion and empathy as we work with each other and our local communities. Genworth values all perspectives, characteristics, and experiences so that employees can bring their full, authentic selves to work to help each other and our company succeed. We celebrate our diversity and understand that being intentional about inclusion is the only way to create a sense of belonging for all associates. We also invest in the vitality of our local communities through grants from the Genworth Foundation, event sponsorships, and employee volunteerism. Our four values guide our strategy, our decisions, and our interactions: Make it human. We care about the people that make up our customers, colleagues, and communities. Make it about others. We do what's best for our customers and collaborate to drive progress. Make it happen. We work with intention toward a common purpose and forge ways forward together. Make it better. We create fulfilling purpose-driven careers by learning from the world and each other. POSITION TITLE Senior Directory Services Architect POSITION LOCATION This position is available to Virginia residents as Richmond hybrid in-office applicants or remote applicants residing in states/locations under Eastern or Central Standard Time: Alabama, Arkansas, Connecticut, Delaware, Florida, Georgia, Illinois, Indiana, Iowa, Kansas, Kentucky, Louisiana, Maine, Maryland, Massachusetts, Michigan, Minnesota, Mississippi, Missouri, Nebraska, New Hampshire, New Jersey, New York, North Carolina, North Dakota, Ohio, Oklahoma, Pennsylvania, Rhode Island, South Carolina, South Dakota, Tennessee, Texas, Vermont, Virginia, Washington DC, West Virginia or Wisconsin. *Hybrid in-office would be required if you reside within 50 miles of our Richmond, VA office. Required in-office days are Tuesdays & Wednesdays. YOUR ROLE Genworth is seeking a highly skilled Senior Directory Services Architect to lead the design, implementation, and management of our on-premises Active Directory infrastructure including DNS and its integration with Microsoft Entra ID for cloud-based identity and access management. The ideal candidate will possess strong project leadership, communication, and cross-functional collaboration skills. What you will be doing Architecture Design and Management Design and implement scalable, secure, and resilient high availability Active Directory (AD), DNS, and Microsoft Entra ID (formerly Azure AD) architectures across a hybrid environment. Lead the design of identity governance solutions including lifecycle workflows, authentication strategy, access reviews, entitlement management, and privileged identity management. Build and test proof-of-concept environments to validate architectural decisions and new technologies. Lead configuration of AD Sites and Services, replication, DNS, DHCP, and Group Policy Objects (GPOs). Develop and maintain architectural blueprints, including forests, domains, trust relationships, replication topologies, and GPO structures. Ensure architectural compliance with Genworth's enterprise standards, security policies, and regulatory requirements. Identity Management & B2B Integration Architect and implement secure identity solutions using Microsoft Entra ID, including support for external identities, federation and cross-tenant collaboration. Configure and manage user flows, Conditional Access policies, and lifecycle workflows for external partners and vendors. Collaborate with business units and stakeholders to define access requirements, streamline onboarding/offboarding workflows, and enforce Conditional Access and MFA policies. Support integration of Genworth's identity infrastructure with SaaS platforms, cloud services, and partner ecosystems. High Availability and Disaster Recovery Ensure high availability (HA) and disaster recovery (DR) readiness for AD/Entra ID environments, minimizing downtime and data loss. Conduct regular testing and validation of DR plans to ensure rapid recovery in case of outages or incidents. Monitor system performance and proactively address potential issues to maintain service reliability. Strategic Planning and Continuous Improvement Develop and execute a strategic roadmap for AD/Entra ID services aligned with business goals. Evaluate emerging technologies and recommend adoption strategies to enhance identity infrastructure. Automate routine AD/Entra ID tasks using PowerShell and Graph API to improve operational efficiency; maintain scripts and automation pipelines. Oversee implementation phases, ensuring alignment with architectural plans and resolving technical issues. Communication and Leadership Provide leadership and mentorship to junior team members, fostering a culture of continuous improvement and innovation. Collaborate cross-functionally with Enterprise Architecture, Security, Compliance, and other business teams to align solutions with organizational needs. Foster a collaborative, inclusive, and high-performance team culture aligned with Genworth's values. Documentation and Reporting Maintain comprehensive documentation of AD/Entra ID architecture, configurations, policies, and procedures. Provide regular reports to IT leadership on AD/Entra ID performance, health, security posture, and project status. Present architectural designs and recommendations to the Architectural Review Board (ARB). What you bring 10+ years of IT experience, with 5+ years in enterprise-scale AD/Entra ID architecture and engineering. Proficiency in AD DS, DNS, GPO, LDAP, Microsoft Entra ID (IAM, RBAC, and MFA), and managing hybrid environments. Strong understanding of resilient infrastructure design, including business continuity planning (BCP) and disaster recovery (DR) for directory services. Familiarity with security frameworks such as NIST 800-53, and the ability to design AD/Entra ID solutions that align with compliance and audit requirements. Proven ability to lead complex technical projects and communicate with both technical and non-technical stakeholders. Nice to have Bachelor's degree in Computer Science, IT, or related field. Certifications such as Microsoft Certified: Azure Administrator Associate or Microsoft 365 Certified: Security Administrator Associate. Experience in regulated environments (e.g., financial services, healthcare, government). Familiarity with AWS and Azure environments. Employee Benefits & Well-Being Genworth employees make a difference in people's lives every day. We're committed to making a difference in our employees' lives. Competitive Compensation & Total Rewards Incentives Comprehensive Healthcare Coverage Multiple 401(k) Savings Plan Options Auto Enrollment in Employer-Directed Retirement Account Feature (100% employer-funded!) Generous Paid Time Off - Including 12 Paid Holidays, Volunteer Time Off and Paid Family Leave Disability, Life, and Long Term Care Insurance Tuition Reimbursement, Student Loan Repayment and Training & Certification Support Wellness support including gym membership reimbursement and Employee Assistance Program resources (work/life support, financial & legal management) Caregiver and Mental Health Support Services The base salary pay range for this role starts at a minimum rate of $ 139,000 up to the maximum of $226,900. The final determination on base pay for this position will be based on multiple factors at the time of this job posting including but not limited to geographic location, experience, and qualifications to ensure pay equity within the organization.