Senior Active Directory Engineer

Senior Active Directory Engineer

The Senior Active Directory Engineer has a critical role in ensuring the global Active Directory environment is secure, scalable, and reliable. Key responsibilities include:

Design and Implementation:

Develop and implement solutions for the AD environment.

Ensure scalability and reliability of identity and access management solutions, such as Azure AD.

Management:

Oversee AD domain controllers, group policies, DNS, and replication.

Perform regular user and access audits.

Troubleshooting and Analysis:

Resolve AD issues and perform root cause analysis.

Serve as the lead technical authority on AD designs and incidents.

Leadership and Mentoring:

Provide technical leadership to junior engineers.

Create and maintain appropriate LWI's and processes related to AD.

This role requires a strong technical background and leadership skills to effectively manage and mentor the team while ensuring the integrity and security of the AD environment.

Job Description

Key Accountabilities

• Developing and implementing AD solutions, including multi-domain and multi-regional environments, and integrating them with other systems like Azure AD
• Implementing and maintaining security policies, conducting regular access reviews, and ensuring compliance with industry regulation
• Creating and maintaining documentation for AD infrastructure, configurations, and operational procedures
• Perform cross-functional, multidisciplinary technical support and delivery of FDB global projects, Compile technology related documentation for GxP and critical IT technologies
• Participate/lead in system validation and testing processes as required. Represent IT system in connection with audits and inspections
• Work with FDB technical architects to define and translate architectural designs into operational delivered solutions and services
• Management and Maintenance: Managing Active Directory Domain Services (AD DS), including user accounts, groups, permissions, and Group Policy Objects (GPOs). Providing escalated support for AD-related issues, including performance problems, replication issues, and security breaches

Qualifications & Experience

• Degree or higher in Computer Science or Information Technology or relevant technical certifications
• 8 years+ experience in an IT 3rd/4th line position with a proven track record in an enterprise AD management environment
• or 5+ years' experience of working in a biomedical IT service environment.
• Any combination of education and experience, which would provide an equivalent background to deliver against role expectations.

Impact & Decision Making

• IT/OT Alignment: Drive alignment between Information Technology and Operational Technology for Active Directory and access services.
• Cross-Functional Collaboration: Build relationships across IT service user towers beyond traditional silos.
• Stakeholder Interaction: Engage with senior-level stakeholders globally about technical requirements and infrastructure needs for both BAU and projects.
• Vendor Collaboration: Work with FDB vendors to ensure solutions are secure and aligned with business technical requirements.
• Audit Contributions: Provide technical input for external and internal audits concerning IT designs and services.
• This role requires strong communication skills, the ability to foster cross-functional relationships, and a strategic approach to aligning IT infrastructure with business needs. Make, advise, and drive decisions based on gathered and assessed information.
• Consult with IT and business leadership.
• IT Governance Representation:
• Represent IT governance within the broader framework.
• Participate in technical and commercial reviews.
• This emphasizes strategic decision-making and governance capabilities, involving collaboration with leadership to align infrastructure with organizational goals.

Key Skills & Accountability

• Troubleshooting and Support: Providing escalated support for AD-related issues, including performance problems, replication issues, and security breaches
• Cloud Migrations: Assisting with the migration of AD to cloud environments like Azure
• Identity Governance: Implementing and managing identity governance solution
• Performance Optimization: Monitoring and optimizing the performance of AD infrastructure
• Disaster Recovery: Ensuring the availability and recoverability of AD through backups and disaster recovery plans
• Collaboration: Working with other IT teams, such as security, IAM and compliance, to ensure alignment on identity and access management strategies
• Security and Compliance: Implementing and maintaining security policies, conducting regular access reviews, and ensuring compliance with industry regulations.
• Management and Maintenance: Managing Active Directory Domain Services (AD DS), including user accounts, groups, permissions, and Group Policy Objects (GPOs)
• Experience: Extensive experience in designing, implementing, and managing Active Directory, including experience with migration and deployment projects.
• Technical Skills: Strong understanding of Active Directory concepts, including DNS, DHCP, GPOs, and replication.
• Scripting: Proficiency in scripting languages like PowerShell for automation and task management.
• Security Focus: Knowledge of security best practices for Active Directory and experience with tools like Azure AD Connect and Azure AD.
• Problem-Solving: Excellent problem-solving and troubleshooting skills.
• Communication: Strong communication and interpersonal skills.
• Certifications: Relevant certifications, such as Microsoft Certified: Azure Solutions Architect Expert or Microsoft Certified: Identity and Access Administration Associate, preferred
• Adept at communicating with technical and non-technical stakeholders at all levels, and across organizations, using architecture communication techniques
• Adept at gaining support from business and technical stakeholders for IT initiatives with low/medium levels of risk, impact, and complexity.
• Understanding of security regarding open-source technologies