Job Description:

Short Description:

IT Security Engineer (Active Directory Engineer)

Complete Description:

Active Directory Engineer

Duties and Responsibilities:

· Strong understanding of AD Attributes, LDAP Queries, PowerShell Scripting to Modify AD Attributes, Group Policy Analysis, GPO Configuration & Item-Level Targeting, Workstation Configurations, Browser Configuration Settings, familiarity with VMView and other Applications that integrated with Active Directory

· Strong knowledge of permissions that are granted natively to various Microsoft Built-In Groups to perform Active Directory Administrative Functions, knowledge of native permissions granted when building AD objects, knowledge of permissions granted natively to Built-In Groups via GPOs and/or Local Policies

· Thorough functional understanding and ability to configure Active Directory Server Roles (CAs, IIS, File/Print, DNS)

· Working knowledge of GPOs, AD Sites, Replication Topology, and native AD troubleshooting tools

· The Active Directory Engineer will plan, support, implement and design a directory synchronization system for Microsoft Active Directory and Windows-based systems across the enterprise, including directory and identity management solutions

· Implementation of business-driven changes, Configuration of Group Policies and Integration of AD Management tools/services

· Analysis, design and implementation of Active Directory and Identity Management solutions

· Independently manage and perform engineering lead role for large scale Active Directory and Identity Management projects

· Analyze current Active Directory environment to identify both technical and operational challenges and develop solutions for improvement

· Analysis, design, capacity planning and implementation of Active Directory Security

· Provide data for regulatory compliance from Active Directory or support systems upon request

· Oversees and maintains the security and reliability of the corporate forest while insuring the integrity of the AD schema

· Primary person in charge of coordination for AD migration and integration activities

· Interact with customers, service managers, and operational support teams to design, test, and deploy security and/or automation solutions to meet business needs

· Leads the evaluation of technical requirements for projects to determine the impact to the infrastructure including equipment redundancy and capacity requirements

· Exceptionally strong articulation and communication skills required for daily interactive with System Administrators

· Ability to create Training Manuals, Presentation Decks using Microsoft Office Products

· Ability to read product documentation to conceptualize and implement solutions, build Domain Controllers and Member Servers to support Enterprise Solutions

· Develop and maintain repeatable processes documents that govern the installation, configuration, administration and maintenance of identity authorization processes

· Troubleshoot any and all problems that arise with any messaging production environment

Skills:

· Hands-on experience with Microsoft Active Directory. Required 10 Years

· Experience developing technical engineering solutions that solve business problems and improve processes. Required

· Experience with integration of applications with Active Directory via LDAP and Kerberos for authentication and authorization. Required

· Experience in VBScript or PowerShell to develop complex automation scripts. Required

· Bachelor's or Master's degree in IT, Computer Science, Engineering, Mathematics or related field. Required

· MCSE certification. Highly desired

· ITIL certification. Highly desired