Every day, tens of millions of people come to Roblox to explore, create, play, learn, and connect with friends in 3D immersive digital experiences– all created by our global community of developers and creators.

At Roblox, we’re building the tools and platform that empower our community to bring any experience that they can imagine to life. Our vision is to reimagine the way people come together, from anywhere in the world, and on any device. We’re on a mission to connect a billion people with optimism and civility, and looking for amazing talent to help us get there.

A career at Roblox means you’ll be working to shape the future of human interaction, solving unique technical challenges at scale, and helping to create safer, more civil shared experiences for everyone.

As a Senior Active Directory Security Engineer, working with the broader IAM team, you will lead our company wide strategy for Active Directory with a security-focused mindset. You'll move us forward to a more modern approach to identity that aligns with our overall IAM strategy at Roblox.

Today, we have an on premise Active Directory deployment that powers authentication and authorization across our workforce and Windows clusters. The cluster operates at tier 0 requiring high up time. Improvements you drive to AD will have high visibility within the company, and provide large improvements to Roblox's overall security posture.

You Will:

  • Participate in evaluating existing Active Directory Infrastructure and Security standards and help define future architecture.

  • Deliver scalable and automation-focused identity solutions for AD

  • Participate in evaluating existing Active Directory Infrastructure and Security standards and help define future architecture.

  • Act as technical escalation point for security concerns related to AD

You Have:

  • 3+ years of experience working with the design, implementation and management of on premise Active Directory solutions.

  • Deep practical knowledge of a variety of core Active Directory services including Privileged Account Management, PKI, Federation Services, Identity Lifecycle Management, and Group Policy.

  • High proficiency with Powershell.

  • Familiarity with principles of JIT, JEA, and Least Privilege access structures.

  • Experience communicating technical goals and objectives to partners.

You Might Have:

  • Experience working with Azure cloud AD service offerings

  • Programming experience in Go or Python

  • Experience leveraging Microsoft's AD support to drive greater impact

  • Some experience with SSO standards (SAML/OIDC)

  • Familiarity with how Okta and Active Directory can work together

  • Practical knowledge Microsoft Intune

  • Familiarity with Microsoft Defender

  • Familiarity with how to remediate CVE findings from a vulnerability scan

  • Familiarity with how to use the Best Practice Analyzer on Windows Server

  • Experience remediating findings for any sort of compliance framework (e.g. PCI, HIPAA, NIST, ISO27001, etc.)

  • MCSE and 70-413 certificates

You Are:

  • Team-oriented: a collaborative team player who enjoys working with others.

  • Passionate about security: You have experience with security principles and understand the value they provide the organization

  • Always taking the long view: You prioritize making changes that have long-term impact, as opposed to focusing on short-term wins.

You’ll Love:

  • Industry-leading compensation package

  • Excellent medical, dental, and vision coverage

  • A rewarding 401k program

  • Flexible vacation policy

  • Roflex - Flexible and supportive work policy

  • Roblox Admin badge for your avatar

  • At Roblox HQ:

    • Free catered lunches five times a week and several fully stocked kitchens with unlimited snacks

    • Onsite fitness center and fitness program credit

    • Annual CalTrain Go Pass

Roblox provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.