Senior Engineer – Active Directory

Job Summary

Cognizant Technology Solutions Asia Pacific Pte. Ltd
Banking/Financial Services
Kuala Lumpur
Years of Experience
6 - 12 years
Posted On
11th Jan 2019
Active Directory,Identity Management,Access Management,Networking

Job Description:

Key Responsibilities
• Active Directory designing, Architecture, Solutioning, Integration with platforms & Applications

• Develop an architecture of directory solutions for Windows, Unix, and related platforms.

• Creating Active Directory Security controls, Domain controller hardening & OS Hardening (Desktop & server)

• Creating security baseline for desktops, windows servers & domain controllers.

• Creating a security access matrix & delegating access based on the requirement.

• Analyzing the requirement and create a GPO to fulfil the requirement with zero impact to other platforms.

• Auditing the security logs and integrating with SIEM e.g. Splunk

• Working with Cyber Defense Security teams and configure the security alerts with clear documentation.

• Conducting POC with multiple vendors for AD security solutions and prepare detailed test cases.
• Create a clear recommendation document with pros and cons for senior management.

• Vulnerability Assessment and Management related to Active Directory & Windows platforms.

• Create a project plan and ability to deliver a project within a timeline.

• Recommend security best practices to achieve stated business objectives, advises on risk assumptions for any variances granted, and provides alternatives to achieve desired end results

Experience, Skills, Knowledge & Qualifications
• 6 to 9 years relevant experience in designing, solutioning & securing Active Directory, Windows & End points with overall 10 to 12 years IT experience

• Strong familiarity with systems and security technologies, including application/OS hardening techniques, Active Directory, windows, Syslog & Security events management (SIEM)

• Good Knowledge of and experience with Active Directory & windows in a large corporate environment

• Good knowledge and experience in AD assessment in terms of OU delegation, GPOs, permission etc.,

• Expertise in Active Directory versions 2003, 2008R2, 2012R2 & 2016

• Good knowledde and hands on experience in Virtualising domain controllers and recovery

• Good knowledge and hands on experience in AD disaster recovery

• Good Knowledge on Active Directory & windows security audit logs

• Good knowledge on Networking, DNS, DHCP, DFS & Network load balancer

• Good knowledge on Cryptography, certificates, PKI, symmetric, asymmetric keys, Encryption & hash algorithms

• Good knowledge on AD authentication protocols Kerberos, NTLM, LDAP, LDAPS & LDAP-Start TLS

• Good knowledge on Network log capturing & analyzing the logs through the tools Wireshark, Tshark, Microsoft NM etc.,

• Good knowledge on application integration with LDAP & Kerberos i.e. Keytab, krb5 etc.,

• Good knowledge on AD migration tools like ADMT, Quest etc.,

• Good knowledge on AD trusts, forest, domain tree structures, sites, DNS, GPOs, OU, FRS, DFSR.

• Good knowledge on any Identity & Acces Management tools like FIM, MIM, OIM, Quest etc.,

• Exposure to SAML, OAuth, OpenID and other security/IAM related standards

• Having knowledge on any security tools such as StealthBITS, Preempt, Microsoft ATA/ATP, ALSID are added advantage

• Strong hands-on familiarity with host-based security solutions, Forensic & Investigation agents, and Compliance scanning and reporting


About Us:

Cognizant is a global leader in business and technology services that helps Clients bring the future of work to life – today – in a business environment that is being transformed by accelerating globalization, virtualization, and the shift toward cloud technologies.

We continuously seek the “best and the brightest” when we recruit new employees, and we’re consistently an “employer of choice” at leading engineering and business schools around the world. Our domain industry specialists have well-established backgrounds working with companies in the industries we serve.

Our teams and their talent are a principle reason that we consistently outperform the competition.