Active Directory Architect

Job Summary

We are seeking a highly skilled Active Directory Architect with 8 to 12 years of experience to join our team. The ideal candidate will have expertise in M365 Idaas ADFS Core Infra - Active Directory Identity Creation - AD Microsoft Certificate Management and Microsoft ADFS. This role involves designing and implementing Active Directory solutions and managing Active Directory administration. The work model is hybrid with day shifts and no travel required.

Responsibilities

• Knowledge to design and scope multiple deliverables across a number of technologies with an emphasis on the Microsoft Active Directory, DNS and Identify Management solution.
• Demonstrates a broad knowledge of Active Directory and DNS Design, Architect, Deploying with security standards.
• Design Approval based on the requirement of with security practices
• Expertise in Domain Merger, Migrating Users, Groups, Workstations and Window Servers from Source Domain to Target Domain.
• Cross forest migration of users with roaming profile, groups, devices (forest to forest with sing O365 tenant), cross forest migration with multiple tenants.
• Administration of Active directory, DNS, and group policy.
  • Group policy management.
  • Creation of Alias, A record, Primary, Secondary and Stub zones in DNS based on requirement
  • External DNS Service management.
• Knowledge on installation and decommission of Windows Domain controllers.
• Installation, configuration and management of Active Directory, DNS servers.
  • AD User Management, Group Management, OU Management, Password Management etc.
  • Creation of security groups, OU, Accounts, and restoration of objects. Cross domain access knowledge.
  • Knowledge on Migration/trust/AD sites and services.
  • Experience in moving FSMO (flexible single master operation) roles across forest and domain Raised Forest Functional and Domain Functional Level across forest and domain level.
• Conditional access policy define, MFA integration, audit user and check unauthorized user logon activity a necessary step to protect AD, guest user assignment. Designing and implementing of Active Directory and Network Fundamentals Protocols.
• Domain controller health check and export to logfile for daily dashboard.
• Providing XML Application Metadata to AD Team.
• Federation Services, Lightweight Directories Services & Rights Management Services
• Creation of Site Link, Subnet and Routing
• Forest operations and topology
• Knowledge of Active Directory distributed file system
  • ADAM/Active Directory Lightweight Directory Services
  • LDAP / X500, Kerberos/NTLM Protocols
  • File replication services
• Knowledge of Active Directory Certificate Services / PKI
• Metadata cleanup, Orphan object cleanup by using NTDSUTIL
• Deep level troubleshooting skills on Active Directory, DNS (ADDNS and Cloudflare).
• AD Integration with Intune, MFA, OKTA for On-prem and Cloud based services.
• DR Exercise - Perform full Disaster recovery failover testing, Ensuring ADFS functionality in the event of a DR situation.
• AD Backup & Restore Schedule Management.
• Good Knowledge on Windows PowerShell scripting
• Work with Vulnerability Management team for the critical vulnerability remediation on the production servers.
• Troubleshooting and fixing patch installation issues
• Experience in ITIL Process Management and worked in Change Management Process.
• Working in ITIL standard ticketing tool i.e. ServiceNow handling Incident management, Change management, and Problem Management.
• Distinguished abilities in end-to-end process management and supporting end-users & developing technical staff to achieve performance objectives
• Good knowledge of GxP regulations and compliance requirements in Life Sciences Industry

Qualifications

• Possess strong expertise in M365 Idaas ADFS Core Infra
• Active Directory and Identity Creation
• Demonstrate proficiency in Microsoft Certificate Management and Microsoft ADFS.
• Have experience in designing and implementing Active Directory solutions.
• Exhibit strong problem-solving skills and the ability to troubleshoot complex issues.
• Show excellent communication and collaboration skills.
• Maintain up-to-date knowledge of cloud technologies and industry best practices.
• Display a proactive approach to learning and professional development.

Certifications Required

Microsoft Certified: Azure Solutions Architect Expert Microsoft Certified: Identity and Access Administrator Associate

Salary and Other Compensation:

Applications will be accepted until 03/28/2025

The annual salary for this position is between $73,350 - $133,500 depending on experience and other qualifications of the successful candidate.

This position is also eligible for Cognizant's discretionary annual incentive program, based on performance and subject to the terms of Cognizant's applicable plans.

Benefits: Cognizant offers the following benefits for this position, subject to applicable eligibility requirements:

• Medical/Dental/Vision/Life Insurance
• Paid holidays plus Paid Time Off
• 401(k) plan and contributions
• Long-term/Short-term Disability
• Paid Parental Leave
• Employee Stock Purchase Plan

Disclaimer: The salary, other compensation, and benefits information is accurate as of the date of this posting. Cognizant reserves the right to modify this information at any time, subject to applicable law.

#LI-IR1 #CB #Ind123