This job has expired

Security Track Specialist

9-12 years
Not Specified

Job Description

Job Description
Requestor name : Yogalakshmi Ravichandran
Job Description :-
Windows Security Engineer (GPO and AGPMC deployment) (DSST)
Security Architect
Individual responsibilities
The role involves the clean-up and remediation of all Group Policies (GPOs) in the Active Directory Infrastructure (consisting of 35 domains). It will also see the implementation of the Advanced Group Policy Management Console (AGPMC) into the main Forest. In addition, all cleaned GPO's will then be imported under the control of the AGPMC. The role will include 1. Analysis and interpretation of data discovery of all Group Policies in all Domains 2. Remediation of broken GPOs as well as consolidation and elimination of those GPOs no longer required. 3. GPO owners to be discovered and documented 4. Implementation of the AGPMC into the main forest. This will then involve setting up of RBAC Model for GPO control 5. Delegate right allowing computer object to write to the ms-MCS-AdmPwd and ms[1]Mcs-AdmPwdExpirationTime Attributes in relevant Server OU. 6. Delegate to the Service Desk group or Windows Tower group the rights to view the LAPS Password and reset the LAPS Password 7. Create GPO via copying AdmPwd.admx and AdmPwd.admx into GPO central Store and create password settings inside LAPS GPO 8. Create GPO Central store for Domain if not already in place 9. Deploy LAPS to servers in Tranches 10. Run report after deployment to check for coverage and report back on results of Tranches . The ideal candidate will possess a broad skillset including solutions design, problem solving and resolution, Powershell scripting, and documentation. The candidate should be an excellent communicator and should be able to deal with all levels of seniority.
Team responsibilities
. The team proactively prevents and resolves all vulnerable Local Administrator accounts on all servers in the Active Directory Infrastructure. All team members must possess a broad skillset including an emphasis on Security as well as problem solving through to resolution
Primary Responsibilities
. Write and maintain appropriate documentation for all LAPS Remediated Servers. . Keep a written plan of all local LAPS administrator accounts on servers to be remediated. . Help take responsibility for all engineering input and project outputs for this project. . Contribute to providing frequent status reports of all implementation tasks and maintain risks and issues for management as and if they arise. . Ensure changes are correctly impact assessed and implemented and are represented at CAB . . Assist with all Security related project work as well as BAU tasks as directed by Team leader/Manager. . Understand existing complex environment and navigate to a successful implementation of LAPS . Assist in the delivery of all Security Initiatives and implementations some of which will be at weekends or unsociable hours . . Provide full aftercare assistance for all Servers which have had LAPS deployments . Adhere to existing standards and processes. Secondary Responsibilities
Provide technical Support and guidance for all security implementations and new standards and procedures to Service desk and staff . Implement changes to and support Active Directory and associated services . Help to spearhead efforts to evangelise the new Security standards and procedures to be implemented in 2021 group wide.
Essential Technical Skills
. Very good Active Directory Knowledge (5 years minimum) in an Enterprise environment - Hierarchy / management group design, deployment, configuration and BAU support. . Experience with all aspects of AD user and group Management . Must be excellent liaising with Service line owners and customers . Excellent document authoring skills . Experience working in an Enterprise environment with strong change control practices
Highly Desirable Skills
. Strong understanding of Windows Server Technologies e.g. Service accounts and policies restricting their use through Group membership and GPO . Previous experience of Implementing LAPS in a client and or server environment
Desirable Skills
. PowerBI & PowerApps. . Experience working with Service Now as the primary ITSM tool . Experience working with a PAM product such as Beyond Trust . Experience working with Advanced Excel using Pivot tables etc

About Hexaware

Job Source :

Similar Jobs

People Also Considered

Career Advice to Find Better