Job Description

Active Directory Modernization & Zero Trust POC Implementation Specialist

Contract Position: 3-4 Month Engagement | Remote (India-based preferred)

About the Project

We seek an experienced Active Directory and Citrix specialist to lead a

Proof of Concept (POC)

for implementing Zero Trust security principles and modern privilege management in a test environment. This POC will establish best practices and automation frameworks for potential enterprise-wide deployment.

Our POC environment simulates a typical enterprise setup with approximately 80 Windows servers, Citrix Virtual Apps infrastructure, and AWS Managed Microsoft AD serving 200+ users. The goal is to develop and validate a methodology for transitioning from traditional broad-access models to granular, role-based permissions without disrupting business operations.

Project Objectives

Design and implement a least-privilege access model in the POC environment Develop automation frameworks for privilege management and monitoring Create application compatibility solutions without relying on elevated privileges Establish security baselines aligned with Zero Trust principles Document repeatable processes for potential production deployment

Key Responsibilities:

Assessment & Architecture (Weeks 1-2)

Evaluate current POC Responsibilities: Assessment environment configuration Design target state architecture following Microsoft/AWS best practices Develop risk-free migration methodology Create comprehensive testing procedures
Implementation (Weeks 3-10)

Configure granular AD security groups and GPO structure Implement privilege access management (PAM) solutions Resolve application compatibility challenges using modern approaches (App-V, FSLogix, shimming) Optimize Citrix policies for security without impacting user experience Develop PowerShell automation for repeatable deployments
Validation & Documentation (Weeks 11-14)

Conduct security validation testing Create operational runbooks and procedures Develop monitoring and alerting frameworks Provide knowledge transfer sessions (recorded)

Required Technical Skills

Must Have:

5+ years

Active Directory design and security hardening

3+ years

Citrix Virtual Apps/XenApp administration

Expert-level

PowerShell scripting and automation Experience with

AWS Managed Microsoft AD

or similar cloud AD services Proven track record of

privilege reduction

projects Strong understanding of

Kerberos, NTLM

, and Windows authentication Application compatibility resolution (ACT, App-V, MSIX)
Preferred:

Healthcare/Biotech industry experience HIPAA/GxP compliance knowledge Security certifications (CISSP, CySA+, CEH) Experience with FSLogix, Citrix WEM, or similar technologies Six Sigma or ITIL methodology experience

Project Environment Details

Windows Server 2016/2019/2022 mixed environment Citrix Virtual Apps (for application delivery and RDP-like sessions) AWS Managed Microsoft AD Mixed application portfolio (COTS, web apps, legacy desktop applications) Integration with SQL Server and IIS-hosted applications 24x7 operational requirement (changes must be non-disruptive)

Deliverables

Assessment Report

- Current state analysis and recommendations

Architecture Documentation

- Target state design and migration path

PowerShell Script Library

- Automated deployment and management tools

Operational Runbooks

- Step-by-step procedures for ongoing management

Security Validation Report

- Testing results and compliance verification

Knowledge Transfer

- Recorded training sessions and Q&A documentation

Engagement Terms

Duration:

3-4 months (with possible extension for production rollout)

Time Zone:

Flexible, but must accommodate 2-3 hours overlap with US EST

Rate:

Competitive based on experience ($25-45 USD/hour or fixed project cost)

Location:

Remote (India-based preferred for cost optimization)

Ideal Candidate Profile

We're looking for someone who:

Has successfully completed similar modernization projects Thinks like both a security architect and operations engineer Can work independently while providing regular updates Writes clear documentation and automation code Understands the balance between security and usability Has a "measure twice, cut once" approach to production changes

How to Apply

Please submit:

Resume/CV

highlighting relevant AD and Citrix projects

Brief case study

(1-2 pages) of a similar privilege reduction project you've completed

Sample PowerShell scripts

demonstrating your automation capabilities

Rate expectations

(hourly or fixed project cost)

Availability

to start within 2 weeks

Interview Process

Initial screening

(30 min video call)

Technical discussion

(1 hour - be prepared to discuss approach and past projects)

Practical exercise

(provide solution architecture for sample scenario)

Final decision

within 48 hours

Bonus Points For:

GitHub repository with relevant PowerShell modules Published articles/blogs on AD security Contributions to security communities Experience with healthcare/biotech compliance requirements AWS certifications

Project Success Metrics

Zero domain-level administrative privileges for standard users All applications functional without elevated rights Automated monitoring and reporting implemented Complete audit trail of all changes Reproducible process for future deployments

Note:

This POC environment is designed to validate approaches before potential enterprise deployment. The successful completion of this project may lead to extended engagement for production implementation and ongoing consultation.

To Apply:

Send your materials to kunjal.pandya@newenglandinfotech.com/michael.moyer@newenglandinfotech.com with subject line "AD Modernization POC Specialist - [Your Name]"

Job Type: Full-time

Pay: Up to ₹1,800.00 per hour

Expected hours: 40 per week

Benefits:

Flexible schedule Work from home
Work Location: Remote