Security Track Consultant

Security Track Consultant

10-14 years
Not Specified

Job Description

Job Description
Requestor name : Yogalakshmi Ravichandran
JD :-
Main Job Purpose Individual responsibilities The role involves the clean-up and remediation of all Group Policies (GPOs) in the Active Directory Infrastructure (consisting of 35 domains). It will also see the implementation of the Advanced Group Policy Management Console (AGPMC) into the main Forest. In addition, all cleaned GPO's will then be imported under the control of the AGPMC. The role will include 1. Analysis and interpretation of data discovery of all Group Policies in all Domains 2. Remediation of broken GPOs as well as consolidation and elimination of those GPOs no longer required. 3. GPO owners to be discovered and documented 4. Implementation of the AGPMC into the main forest. This will then involve setting up of RBAC Model for GPO control 5. Delegate right allowing computer object to write to the ms-MCS-AdmPwd and msMcs-AdmPwdExpirationTime Attributes in relevant Server OU. 6. Delegate to the Service Desk group or Windows Tower group the rights to view the LAPS Password and reset the LAPS Password 7. Create GPO via copying AdmPwd.admx and AdmPwd.admx into GPO central Store and create password settings inside LAPS GPO 8. Create GPO Central store for Domain if not already in place 9. Deploy LAPS to servers in Tranches 10. Run report after deployment to check for coverage and report back on results of Tranches . The ideal candidate will possess a broad skillset including solutions design, problem solving and resolution, Powershell scripting, and documentation. The candidate should be an excellent communicator and should be able to deal with all levels of seniority. Team responsibilities . The team proactively prevents and resolves all vulnerable Local Administrator accounts on all servers in the Active Directory Infrastructure. All team members must possess a broad skillset including an emphasis on Security as well as problem solving through to resolution. V0.1- Final Draft April 2021 Ref: KBuck 3 V0.1- Final Draft April 2021 Ref: KBuck 4 Key Duties and Responsibilities Primary Responsibilities . Write and maintain appropriate documentation for all LAPS Remediated Servers. . Keep a written plan of all local LAPS administrator accounts on servers to be remediated. . Help take responsibility for all engineering input and project outputs for this project. . Contribute to providing frequent status reports of all implementation tasks and maintain risks and issues for management as and if they arise. . Ensure changes are correctly impact assessed and implemented and are represented at CAB . . Assist with all Security related project work as well as BAU tasks as directed by Team leader/Manager. . Understand existing complex environment and navigate to a successful implementation of LAPS . Assist in the delivery of all Security Initiatives and implementations some of which will be at weekends or unsociable hours . . Provide full aftercare assistance for all Servers which have had LAPS deployments . Adhere to existing standards and processes. Secondary Responsibilities Provide technical Support and guidance for all security implementations and new standards and procedures to Service desk and staff . Implement changes to and support Active Directory and associated services . Help to spearhead efforts to evangelise the new Security standards and procedures to be implemented in 2021 group wide. Skills Essential Technical Skills . Very good Active Directory Knowledge (5 years minimum) in an Enterprise environment - Hierarchy / management group design, deployment, configuration and BAU support. . Experience with all aspects of AD user and group Management . Must be excellent liaising with Service line owners and customers . Excellent document authoring skills . Experience working in an Enterprise environment with strong change control practices Highly Desirable Skills . Strong understanding of Windows Server Technologies e.g. Service accounts and policies restricting their use through Group membership and GPO . Previous experience of Implementing LAPS in a client and or server environment Desirable Skills . PowerBI & PowerApps. . Experience working with Service Now as the primary ITSM tool . Experience working with a PAM product such as Beyond Trust . Experience working with Advanced Excel using Pivot tables etc V0.1- Final Draft April 2021 Ref: KBuck 5 Working environment Health, Safety and Security . Develop a working environment and culture that promotes health, safety, and security within the LSEG organisation. Customer Care . Ensure that services offered by the Directory Services Security Team (DSST) are organised and run to promote the highest levels of customer care for both internal and external customers. Communication and Relationship Skills . Communicate effectively and clearly with all teams as well as championing the new Security Policies and Procedures to be implemented and maintained throughout the group infrastructure within the organisation. . Interact with and provide a high level of support to team members. . Communicate effectively, particularly with issues that are more complex with other stakeholders and teams, referring when necessary. . Use developed people skills to communicate so others can understand, with the ability to recognise when to refer issues appropriately. . Proactively organise knowledge transfer sessions to enable other infosec team members to leverage the functionality of all new Implementations within the Windows Security environment. Key Behaviours . Maintain proficiency as a Windows Security Architect with Active Directory Systems Speciality . Ability to develop, test, execute and document solutions to a very high standard. . Excellent investigation and troubleshooting skills of complex issues and ability to locate application owners and liaise effectively with them. . Motivated self-starter who can work independently as well as part of a team. . High level of accuracy and attention to detail. . Able to take direction from others when needed and not afraid to ask for help. . Ability to learn new concepts and products with ease. . Ability to think quickly and decisively and look for alternative solutions in challenging situations. . Ability to produce clear and accurate technical documentation and train/hand-off design and implementation work. . Ability to work under pressure to meet challenging deadlines. . Ability to report in a formal and structured method. On Call and Organisational Skills . Methodical and highly organised. . Ability to work under pressure to meet challenging deadlines. Location . Offshore working but with trouble free Teams meetings with audio and video, as well as RSA connectivity to all servers. V0.1- Final Draft April 2021 Ref: KBuck 6 Core Competencies, Attributes and Manager Provisions . Demonstrate energy and drive in getting things done. . Evaluate the quality of the service(s) we provide and always try to do better. . Committed to personal development and learning for themselves and for their team. . Show insight into their own behaviour and the behaviours of others. . Understand how to embed change so that improvements are sustainable and consistent. . Commit to communicating the vision, goals, successes, and lessons learned to their colleagues and team members General Provisions . Act as a role model and promote behaviours in keeping with the Mission & Values of the organisation. . Ensure that the Health and Safety Policies, Standard Operating Procedures and Guidelines are adhered to at all times. . Other duties within the general scope of the post may be required from time to time. Changes will be discussed with the Applicant before implementation. . The duties of the post and job description will be regularly reviewed through the agreed process

About Hexaware

Job Source :

Similar Jobs

People Also Considered

Career Advice to Find Better