Job Description

Req ID:

347758




NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.



We are currently seeking a AD, Entra ID PKI - Security Systems Associate Director to join our team in Bengaluru, Karn?taka (IN-KA), India (IN).

Leading a team of 20+ Global engineers working on Active Directory DNS, DHCP, GPO, ADFS & Azure AD, MFA, SSO, IGA/IAM - designing, Architecture Solutions, Integration with platforms & Applications Develop an architecture of directory solutions for Windows, Unix, and related platforms Expert knowledge in Domain consolidations, Active Directory management, Security and understanding of User accounts, machine accounts, GPOs Understand the requirement and create a migration plan for any services i.e. DNS, DHCP, and Certificate Services (PKI) etc. Analyzing the requirement and design a solution to fulfil the requirement with zero impact to other platforms Strong knowledge of Azure active directory design, Architect Solutions, Integration with platforms & Applications and AD connector to Azure Auditing the security logs and integrating with SIEM Conducting POC with multiple vendors for AD solutions and prepare detailed test cases. Create a clear recommendation document with pros and cons for senior management Vulnerability Assessment and Management related to Active Directory, DNS & Windows platforms Active Directory consolidations including application integration working with application teams Recommend security best practices to achieve stated business objectives, advises on risk assumptions for any variances granted, and provides alternatives to achieve desired end results Conducting interviews and assisting with recruiting efforts Strong background in financial management including Cost models & Cost optimization Extensive experience in service delivery, managing KPI, SLA, Contract writing and reviews and service solutioning.

Required Qualifications:

Minimum 5 years relevant experience in Architecture and designing, solutions & Migrating Active Directory, Azure AD, Windows & End points Strong understanding of Active Directory migration tools or equivalent and consolidation of Global Forest and Domains. Hands on experience in successful consolidation of AD Forests and Domains Ideal Strong understanding of Azure AD (Azure Active Directory) & Integration with on premise Understanding of AD Trusts, two-way Trusts and one-way Trusts and deep knowledge of Active Directory Schemas and meta data Strong knowledge of Azure Active Directory technologies, including authentication models, federation, Multifactor Authentication (MFA), conditional access policies and other relevant capabilities. Knowledge of best practices in AD/Azure Privileged access management and modern AD/Azure Secured Administration practices Strong Knowledge on IAM disciplines like PIM and Privilege Administrative Accounts PAM solutions such as CyberArk Strong familiarity with DNS Active Directory integrated, partitions and Infoblox & DHCP systems and Migration of services from Active Directory any platform Demonstrated knowledge in AD assessment in terms of OU delegation, GPOs, permission etc., Knowledge of Active Directory versions 2003, 2008R2, 2012R2 & 2016, 2019 and Azure Active Directory Demonstrated working knowledge and ideally hands on experience in AD disaster recovery, Replication issues and resolution using tools such as repadmin Demonstrated knowledge in writing and applying GPOs, especially related to domain consolidations Good Knowledge on Active Directory & windows audit logs and levels and SIEM integration Good knowledge on Networking, firewalls, including host firewalls, DNS, DHCP, DFS & Network load balancers and Secure Global Directory or Secure LDAP Good knowledge on AD authentication protocols Kerberos, NTLM, LDAP, LDAPS & LDAP-Start TLS Knowledge of on Network log capturing & analyzing the network packet captures through the tools Wireshark, Microsoft NM etc., knowledge of application integration with LDAP & Kerberos i.e. Keytab, krb5 etc., Good knowledge on any Identity & Access Management tools like FIM, MIM, OIM, Quest etc., Exposure or understanding of SAML, OAuth, OpenID and other security/IAM related standards Knowledge of single sign-on, federation, active directory/LDAP, Kerberos/NTLM authentication & integrated Windows authentication Good knowledge on Identity management and Role based access control, attribute-based access control & entitlement management, Least privileged access models Excellent communication skills, especially verbal and written Good documentation skills to write a design & configuration documents version controls Excellent Interpersonal skill and ability to work as part of a team Home office for remote work Ability to work some weekends and late nights performing approved changes ITIL V3 or later experience, experience in writing change request and attending Change Advisory Boards (CAB) meeting Experience with Security Controls and compliance

Required Qualifications:

5+ years of relevant experience 3+ years leadership experience Strong knowledge of Active Directory, Window Server OS, Network, Firewall Basic understanding of Azure AD, Azure SSO, Azure MFA Basic knowledge of Group Policy Virtualization technology basic understanding Strong troubleshooting skills Basic PowerShell Commands/scripting

Preferences:

Ideally certifications from one of the following: Security+, Microsoft, AWS 7+ years of relevant experience 4+ years leadership experience Strong Azure AD, Azure SSO, Azure MFA skills Undergraduate degree Strong understanding of networking technologies Advanced knowledge of network security that pertains to communications, computer system environments and related infrastructures


Job Grade

About NTT DATA

NTT DATA is a $30 billion business and technology services leader, serving 75% of the Fortune Global 100. We are committed to accelerating client success and positively impacting society through responsible innovation. We are one of the world's leading AI and digital infrastructure providers, with unmatched capabilities in enterprise-scale AI, cloud, security, connectivity, data centers and application services. our consulting and Industry solutions help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have experts in more than 50 countries. We also offer clients access to a robust ecosystem of innovation centers as well as established and start-up partners. NTT DATA is a part of NTT Group, which invests over $3 billion each year in R&D.



Whenever possible, we hire locally to NTT DATA offices or client sites. This ensures we can provide timely and effective support tailored to each client's needs. While many positions offer remote or hybrid work options, these arrangements are subject to change based on client requirements. For employees near an NTT DATA office or client site, in-office attendance may be required for meetings or events, depending on business needs. At NTT DATA, we are committed to staying flexible and meeting the evolving needs of both our clients and employees. NTT DATA recruiters will never ask for payment or banking information and will only use @nttdata.com and @talent.nttdataservices.com email addresses. If you are requested to provide payment or disclose banking information, please submit a contact us form, https://us.nttdata.com/en/contact-us.

NTT DATA endeavors to make https://us.nttdata.com accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at https://us.nttdata.com/en/contact-us.

This contact information is for accommodation requests only and cannot be used to inquire about the status of applications. NTT DATA is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. For our EEO Policy Statement, please click here. If you'd like more information on your EEO rights under the law, please click here. For Pay Transparency information, please click here.