Technical Team Lead – Windows Network Services12month contract + ExtensionsBrazil$37/hr - $46/hr**Exact compensation may vary based on several factors, including skills, experience, and education.**Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.The Technical Team Lead – Windows Network Services is responsible for the day-to-day operation of Active Directory and related network identity services in their scope. This includes managing domain controllers, implementing Group Policy changes, ensuring DNS/DHCP are running smoothly, and responding to any incidents affecting authentication or network directory services. They implement the Architect’s designs and standards on the ground, making configuration changes and overseeing maintenance. Additionally, they support integrations (e.g., if a new application needs AD integration or certificates) and handle routine upgrades and patches for AD and its companion services.Key Responsibilities:Operate and Monitor AD Environments: Oversee the health of AD domains and domain controllers in the region. This includes monitoring replication, FSMO roles, AD logs, and ensuring backups and disaster recovery procedures for AD are in place.Implement GPO Changes: Create or update Group Policy Objects as needed, following the architectural guidelines. Test GPO changes and roll them out, managing GPO conflicts or inheritance issues. Delegate GPO management appropriately.Certificate and Naming Services: Manage the day-to-day of AD Certificate Services (issuing/revoking certificates, root CA maintenance) and core networking services like DNS, DHCP, and NTP servers. Ensure DNS zones are correct and replicated, DHCP scopes are managed, and time synchronization is consistent.Security Control Implementation: Apply and uphold security controls as defined by the Architect. For example, enforce the use of privileged access workstations or other controls for AD admins, ensure service accounts are being used properly, and implement changes from any AD security assessments (such as patching LDAP signing issues, etc.)..Incident Response: Act as the escalation point for any incidents involving AD or WNS services. Lead troubleshooting for outages or cyber incidents (like a suspected AD compromise). Coordinate with Security Operations if needed to contain and remediate issues.Support Integrations: Work with other IT teams to integrate systems with AD (for authentication/SSO) or to set up new trust relationships. Assist in configuration of SSO, MFA, or PAM solutions as they interface with AD.Continuous Improvement: Identify areas to improve performance or stability of AD and WNS (e.g., decommissioning legacy domain controllers, fine-tuning DNS configurations, optimizing login scripts or group policy processing). Implement improvements and document changes.Qualifications & Experience:Bachelor's degree in computer science, Engineering, or similar (or equivalent practical experience).7+ years of hands-on experience in Windows Server administration and Active Directory management. Familiarity with global AD deployments is a plus.Strong experience with core network services on Windows (DNS, DHCP, DFS, Certificate Services). Able to configure and troubleshoot these services expertly.Experience in an enterprise IT operations or infrastructure team, with responsibilities including change management and incident management for critical services.Knowledge of identity integrations (how AD works with Azure AD/Azure AD Connect, SSO protocols like SAML/Kerberos, etc.), and experience implementing MFA or PAM in conjunction with AD is beneficial.