Job Description
Role - Active DIrectory Architect (Domain consolidation)
Location - US Project requirement
– Assess the Current State of Client’s AD and Entra ID domains:
This includes three (3) AD forests and one (1) Entra ID instance.
- Assess various aspects of the AD and Azure deployment:
- Forest design
- Site design
- Domain design
- Security group topology
- Deployment architecture
- Organizational unit (“ OU ”) design
- Authentication
- Group policy design
- Run a PowerShell queries against the Client AD and Entra ID domains in order to determine relevant statistics of current relevant AD and Azure objects (users, accounts, groups, organizational units (OUs), computer objects, etc.)
- Run SailPoint OOTB reports against AD connectivity to provide group and account relevant ownership and membership information.
Phase II – Identify configurational and operational gaps
- Based on detailed review of the AD and Entra ID domains identify gaps in configurations or operational aspects of the Client’s infrastructure, architecture and deployment.
- Prioritize gaps based on criticality and risk.
Phase III – Provide recommendations to address critical gaps
- Discover and assess current processes for AD group management, AD group policy management, and AD account management.
- Suggest modifications and refinements to existing processes and create new processes (if required).
- Based on Phase II activities (tasks and milestones), determine resources and skills necessary to complete those tasks and achieve those milestones.
- Provide an estimated budget to accomplish the remediation as outlined in Phase II.
Project Approach, Activities and Deliverables Simeio will deliver the Engagement in a phased approach as follows:
Phase I – Assess Current State of Clients AD and Entra ID domains:
- Run PowerShell queries against the Client AD and Entra ID domain in order to determine relevant statistics of current AD objects.
- Using Client’s existing identity governance tool (SailPoint), run reports against Client’s AD groups.
- Review AD and Entra ID configurations, processes and documentation.
- Based on these activities, prioritize and identify any gaps .
- Simeio may leverage Client tools such as ADUC (Active Directory Users & Computers), SailPoint, any AD scanning utility such as manage engine, or StealthAUDIT as needed to accomplish some of the data gathering activities.
Phase II – Identify configurational and operational gaps
- Review of the AD and Entra ID domains. Identify gaps in configurations or operational aspects of the Client’s infrastructure, architecture and deployment.
- Prioritize gaps based on criticality and risk.
Phase III – Provide recommendations to address critical gaps and risks
- Discover and assess current processes for AD group management, AD group policy management, and AD account management.
- Suggest modifications and refinements to existing processes and create new processes (if required).
- Based on Phase II activities (tasks and milestones), determine resources and skills necessary to complete those tasks and achieve those milestones.
- Provide an estimated budget to accomplish the remediation as outlined in Phase II.
Simeio is an equal opportunity employer. If you require assistance with completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to any of the recruitment team at recruitment@simeio.com or +1 404-882-3700.
Job Tags
Contract work,