AD, Entra ID PKI - Security Systems Associate Director at NTT DATA

Bengaluru, karnataka, India -

Full Time

Start Date

Immediate

Expiry Date

24 Feb, 26

Salary

0.0

Posted On

26 Nov, 25

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Active Directory, Azure AD, Security, Networking, IAM, MFA, GPOs, PowerShell, Disaster Recovery, SIEM, Authentication, Documentation, Troubleshooting, Change Management, Virtualization, Firewalls

Industry

IT Services and IT Consulting

Description

Develop an architecture of directory solutions for Windows, Unix, and related platforms Auditing the security logs and integrating with SIEM Minimum 5 years relevant experience in Architecture and designing, solutions & Migrating Active Directory, Azure AD, Windows & End points Strong understanding of Active Directory migration tools or equivalent and consolidation of Global Forest and Domains. Hands on experience in successful consolidation of AD Forests and Domains Ideal Strong understanding of Azure AD (Azure Active Directory) & Integration with on premise Understanding of AD Trusts, two-way Trusts and one-way Trusts and deep knowledge of Active Directory Schemas and meta data Strong knowledge of Azure Active Directory technologies, including authentication models, federation, Multifactor Authentication (MFA), conditional access policies and other relevant capabilities. Knowledge of best practices in AD/Azure Privileged access management and modern AD/Azure Secured Administration practices Strong Knowledge on IAM disciplines like PIM and Privilege Administrative Accounts PAM solutions such as CyberArk Strong familiarity with DNS Active Directory integrated, partitions and Infoblox & DHCP systems and Migration of services from Active Directory any platform Demonstrated knowledge in AD assessment in terms of OU delegation, GPOs, permission etc., Knowledge of Active Directory versions 2003, 2008R2, 2012R2 & 2016, 2019 and Azure Active Directory Demonstrated working knowledge and ideally hands on experience in AD disaster recovery, Replication issues and resolution using tools such as repadmin Demonstrated knowledge in writing and applying GPOs, especially related to domain consolidations Good Knowledge on Active Directory & windows audit logs and levels and SIEM integration Good knowledge on Networking, firewalls, including host firewalls, DNS, DHCP, DFS & Network load balancers and Secure Global Directory or Secure LDAP Good knowledge on AD authentication protocols Kerberos, NTLM, LDAP, LDAPS & LDAP-Start TLS Knowledge of on Network log capturing & analyzing the network packet captures through the tools Wireshark, Microsoft NM etc., knowledge of application integration with LDAP & Kerberos i.e. Keytab, krb5 etc., Good knowledge on any Identity & Access Management tools like FIM, MIM, OIM, Quest etc., Exposure or understanding of SAML, OAuth, OpenID and other security/IAM related standards Knowledge of single sign-on, federation, active directory/LDAP, Kerberos/NTLM authentication & integrated Windows authentication Good knowledge on Identity management and Role based access control, attribute-based access control & entitlement management, Least privileged access models Excellent communication skills, especially verbal and written Good documentation skills to write a design & configuration documents version controls Excellent Interpersonal skill and ability to work as part of a team Home office for remote work Ability to work some weekends and late nights performing approved changes ITIL V3 or later experience, experience in writing change request and attending Change Advisory Boards (CAB) meeting Experience with Security Controls and compliance 5+ years of relevant experience 3+ years leadership experience Strong knowledge of Active Directory, Window Server OS, Network, Firewall Basic understanding of Azure AD, Azure SSO, Azure MFA Basic knowledge of Group Policy Virtualization technology basic understanding Strong troubleshooting skills Basic PowerShell Commands/scripting Ideally certifications from one of the following: Security+, Microsoft, AWS 7+ years of relevant experience 4+ years leadership experience Strong Azure AD, Azure SSO, Azure MFA skills Undergraduate degree Strong understanding of networking technologies Advanced knowledge of network security that pertains to communications, computer system environments and related infrastructures

Responsibilities

Develop an architecture of directory solutions for various platforms and audit security logs while integrating with SIEM. The role involves consolidating Active Directory forests and domains and ensuring best practices in privileged access management.