Posted:1 day ago| Platform: Naukri logo

Apply

Skills Required

azure active directory active directory oauth kerberos ntlm attack path saml oidc

Work Mode

Hybrid

Job Type

Full Time

Job Description

Hi,

Greetings of the Day!

We are hiring for one of the BIG4 Company:

Profile- Azure AD

Location- Pune/ Bangalore/ Hyderabad

Workmode- Hybrid (2 days or 3 days WFO in a week)

Experience- 8 yrs +

Key Responsibilities:

  • Conduct Active Directory and Azure AD security assessments for Tier-0 components.

  • Identify attack paths and privilege escalation vectors using BloodHound, ADRecon, PingCastle, PowerView, etc.

  • Evaluate Kerberos and NTLM authentication configurations and detect weaknesses (e.g., Pass-the-Hash, Kerberoasting, AS-REP roasting).

  • Review SAML, OIDC, and OAuth configurations in federated and hybrid identity environments.

  • Assess privileged accounts, admin tiers, service accounts, and delegation models.

  • Review Azure AD Conditional Access, MFA, and Identity Protection policies.

  • Analyze trust relationships, GPOs, and forest/domain design for potential privilege escalation.

  • Evaluate security posture of Tier-0 assets Domain Controllers, ADFS, PKI servers, Azure AD Connect, and Privileged Access Workstations (PAWs).

  • Provide remediation recommendations based on Microsoft Tiering Model, CIS benchmarks, and Zero Trust principles.

  • Develop and deliver technical reports and executive summaries detailing findings, risks, and mitigation priorities.

  • Collaborate with Incident Response, Red Team, and IAM teams to validate findings and strengthen identity protection controls.

  • Support continuous improvement by contributing to AD/Azure AD hardening guidelines and playbooks.

Required Technical Skills:


  • Active Directory & Azure AD: Deep understanding of schema, replication, group policy, authentication, and hybrid identity.

  • Authentication Protocols: In-depth knowledge of Kerberos, NTLM, LDAP, SAML, OIDC, OAuth 2.0.

  • Attack Techniques: Hands-on experience with Kerberoasting, Pass-the-Ticket, Pass-the-Hash, AS-REP roasting, Golden/Silver Ticket attacks.

  • Assessment Tools: Proficient in BloodHound, ADRecon, PingCastle, PowerView, Mimikatz, and other AD analysis utilities.

  • Security Hardening: Familiarity with Tier-0 protection strategies, CIS Benchmarks, Microsoft Security Baselines, and Zero Trust concepts.

  • Azure Identity Security: Experience with Azure AD roles, Conditional Access, Privileged Identity Management (PIM), Entra ID Protection.

  • Reporting: Strong ability to translate technical findings into executive-friendly risk reports and remediation roadmaps.

More Jobs at Openmind HR Solutions

Azure AD

hyderabad, pune, bengaluru

8.0 - 12.0 yrs
|

INR 2 - 3 Lacs

Mock Interview

Practice Video Interview with JobPe AI

Start Job-Specific Interview
cta

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.

Job Application AI Bot

Job Application AI Bot

Apply to 20+ Portals in one click

Download Now

Download the Mobile App

Instantly access job listings, apply easily, and track applications.

Google Play App Store
coding practice

Enhance Your Skills

Practice coding challenges to boost your skills

Start Practicing Now
Openmind HR Solutions

RecommendedJobs for You

Azure AD

Openmind HR Solutions

hyderabad, pune, bengaluru

Wipro Limited logo

Azure AD

Wipro Limited

Hyderābād

Wipro Limited logo

Azure AD

Wipro Limited

Hyderabad, Telangana

Wipro logo

Azure AD

Wipro

Hyderabad

HCLTech logo

Azure AD

HCLTech

Nagpur, Lucknow

Infosys logo

Azure AD

Infosys

Hubli

Wipro logo

Azure AD

Wipro

kolkata, pune, bengaluru

Orcapod Consulting Services logo

Artificial Intelligence Architect

Orcapod Consulting Services

hyderabad, chennai, bengaluru

Guddge Infosol logo

Cloud Data Engineer

Guddge Infosol

mumbai

Advantmed logo

Python Developer

Advantmed

pune, ahmedabad