Description et exigences
Position Summary:
We are seeking a highly skilled professional specializing in Active Directory and Azure Active Directory to lead our dynamic team of IT professionals. The ideal candidate will possess in-depth expertise in designing, implementing, and maintaining complex Active Directory environments, along with a strong understanding of Azure AD integration and management. This role requires exceptional leadership abilities, technical acumen, and a proactive approach to problem-solving.
Active Directory Infrastructure Management:
- Design, implement, and manage enterprise-scale Active Directory environments, ensuring optimal performance, scalability, and security.
- Oversee the configuration and maintenance of Group Policies, DNS, and other core Active Directory services.
- Manage Active Directory schema extensions and updates to accommodate new attributes and object classes as per organizational requirements.
- Monitor and optimize the deployment and placement of domain controllers across geographical locations for fault tolerance and high availability.
- Integrate Active Directory with LDAP-based directory services and applications, ensuring seamless authentication and directory synchronization.
- Configure LDAP policies and access controls to govern directory access and permissions for LDAP-enabled applications and services.
- Design and implement Active Directory forests and domains based on organizational structure, business requirements, and security considerations.
- Plan and execute forest and domain consolidations, migrations, and restructuring initiatives to streamline directory services architecture.
- Establish and manage trust relationships between Active Directory domains, forests, and external identity providers for cross-domain authentication and resource access.
- Implement and configure Active Directory Federation Services (AD FS) for federated identity and single sign-on (SSO) with cloud-based applications and services.
- Develop and maintain backup and recovery strategies for Active Directory, including regular system state backups, offline domain controller backups, and authoritative restore procedures.
- Test and validate Active Directory disaster recovery plans to ensure business continuity and data integrity in the event of system failures or disasters.
- Monitor Active Directory performance metrics and resource utilization to identify bottlenecks, trends, and capacity planning requirements.
- Optimize Active Directory database (NTDS.dit) performance, replication topology, and site link configurations to minimize latency and maximize efficiency.
- Implement auditing policies and security event logging in Active Directory to track changes, access attempts, and security incidents for compliance with regulatory requirements and internal policies.
- Generate and review compliance reports, including Active Directory security assessments, access reviews, and audit trails, to ensure adherence to industry standards and best practices.
Azure Active Directory Integration:
- Architect and implement Azure AD solutions to support hybrid or cloud-only identity and access management scenarios.
- Manage Azure AD Connect configurations, synchronization, and federation services for seamless integration with on-premises Active Directory.
Security and Compliance:
- Develop and enforce security policies, procedures, and best practices to safeguard Active Directory environments from internal and external threats.
- Conduct regular security assessments, audits, and compliance reviews to ensure adherence to industry standards and regulatory requirements.
Troubleshooting and Incident Response:
- Lead troubleshooting efforts for Active Directory-related issues, collaborating with cross-functional teams to resolve complex technical problems promptly.
- Develop and implement incident response procedures to minimize downtime and mitigate risks to business operations.
Education:
Bachelor’s Degree in Computer Science, Information Systems, or related field.
Experience:
- Proven experience (10+ years) in a technical leadership role, with a focus on Active Directory and Azure Active Directory.
- Expertise in designing, implementing, and managing complex Active Directory environments in enterprise-scale organizations.
- Hands-on experience with Azure AD integration, including Azure AD Connect, Azure AD Domain Services, and Azure AD B2B/B2C.
- Strong understanding of identity and access management (IAM) principles, including authentication protocols, single sign-on (SSO), and multi-factor authentication (MFA).
- Proficiency in PowerShell scripting for automation, configuration management, and reporting tasks related to Active Directory and Azure AD.
Excellent communication skills, with the ability to articulate technical concepts to non-technical stakeholders and executive leadership.