Cyber Security Architect

Role: Cyber Security Architect Location: Charlotte, NC (Onsite) Experience: 12+ Years Duration: Long time contract Role Description: Serve as a subject matter expert for Directory Services (AD / AAD) under the IAM services portfolio. Perform in the capacity of AD / AAD Engineer. Understand how the service works from a business/end-user/technical perspective. Have command of the service including its capabilities and proper use. Execute proof-of-concepts guided by Service Manager and Director. Complete assigned project/tasks in a timely manner. Interact with key stakeholders and project/program teams to understand their requirements and architect solutions based on best practices. Ensure proper oversight for quality assurance of IAM artifacts. Architect, own, and maintain processes, metrics, and procedures. Enforce adherence to architectural standards/principles. Proactively provide feedback regarding infrastructure IAM engineering methodologies, standards, and leading projects. Minimize technical exposure and risk on projects. Deliver and manage a highly available, stable, and secure Directory Services environment. Drive value realization for the services and technology within the cybersecurity controls organization. Participate in testing (e.g., planning and execution) related to performance, disaster recovery, and business continuity for AD and AAD. Work with Solution Architect and onboard new technologies which can enhance the security of Active Directory and Azure Active Directory. Design & implement new solutions like Windows Hello for Business, MFA, Conditional Access, TAP, Entra Lifecycle management, Secure Service Edge, Authentication strengths, and Application management. Understand design & implementation of Microsoft Defender for (MDI) on all Domain Controllers. Integrate it with Syslog server and generate security events. Understand design and implement Conditional Access policy which enhances the security of devices & Cloud applications as part of the Zero Trust methodology. Understand design and implement Quest-On Demand Recovery, RMAD, and Forest recovery for end-to-end disaster recovery of Active Directory and Azure AD. Design and implement Azure AD B2B. Design and implement multifactor solutions. Understand ADFS. Manage day-to-day changes, escalations, and incidents related to the internal AD & AAD infrastructure. Configure and manage Active Directory infrastructure on Windows Server. Good knowledge of PowerShell for Active Directory/Azure AD. Administer the complete ADUC structure and make changes to the design. Manage Active Directory Objects via Active Directory Users and Computers. Components Restriction, Folder Redirections, Software Deployment, Administrative Templates, Windows Settings, Group Policies. Work on Azure AD and Azure AD Connect. Collaborate with global team members based in the US, India, and EMEA. #J-18808-Ljbffr

Created: 2025-03-05