Number of Openings
AD-OT 1
ECMS ID in sourcing stage
TBD
Assignment Duration
3 to 6 months
Total Yrs. of Experience
8+ years
Relevant Yrs. of experience
5+ years
Detailed JD (Roles and Responsibilities)
Please refer attached JD
Mandatory skills
As per attached JD
Desired/ Secondary skills
As per attached JD
Domain
Cyber Security
Max Vendor Rate in Per Day (Currency in relevance to work location)
13.5K INR per day
Work Location given in ECMS ID
PUNE
WFO/WFH/Hybrid WFO
10 days from office ( 9:25 hours )
BG Check (Before OR After onboarding)
After onboarding
Is there any working in shifts from standard Daylight (to avoid confusions post onboarding) YES/ NO
Yes , as per client ask
L3 Infrastructure Expert
Authentication Specialist
AD OT
Context
The IT organization of Air Liquide was profoundly transformed in 2014 with the creation of an infrastructure services provider, GIO, and several business IT departments, called "DDS" ("Digital Delivery Services"), responsible for applications related to a business or geographical area. The Global Infrastructure and Operations (GIO) entity of Air Liquide is the global shared services center that provides IT infrastructure services to the various client IT departments of the Air Liquide Group.
Since its creation, GIO has profoundly transformed the Groups infrastructure, leveraging Cloud solutions and introducing modern and innovative technologies.
Integrated into the "Security Services" service line, you will report to the head of "Transition & Operations department. You will join a dynamic, close-knit, and talented team. In an international context, you will work with people from all walks of life.
Scope - Perimeter - technologies:
The main scope and perimeter of the L3 AD OT expert will be :
Active Directory in the industrial world
PKI in the industrial world
Radius in the industrial world
Hyper - V (Hyper V farms hostings OT AD/PKI/Radius servers)
AWS account (AWS account hosting AD servers)
Windows Master (used to deploy domain controllers and PKI/Radius servers)
Missions and roles :
Within GIO, in the Security / Transition and Operations department, the main missions of the L3 AD OT will be the following:
The production and maintenance in operational condition of the Infrastructures that host the Groups Industrial Active Directory directory, the PKI, and the Radius authentication infrastructure
The production and maintenance in operational condition of the Groups Industrial Active Directory directory, the PKI, and the Radius authentication infrastructure
Continuous improvement of the described services
Management of critical incidents and security crises, guaranteeing rapid resolution and minimal disruption.
Implementation of complex changes with the coordination of the teams concerned in compliance with security policies.
Management (including coordination) of "problems".
Optimization of the tools used by the Identity Access Management administrators (AD, PKI, Radius, Strong Authentication, ...).
Automation of recurring tasks.
Supporting internal projects, from their design to their implementation.
Development and deployment of solutions in an automated way (Infra as Code).
Development of operational dashboards that make sense.
Conducting technical projects (analysis, planning, execution, monitoring, reporting).
Ensuring the quality of the service delivered by the transition and operations department to its clients, broadly speaking.
Training of L2 and other L3 support teams.
To carry out these general missions, the L3 Expert will notably be responsible for:
Analyzing, qualifying, and coordinating requests from internal or external clients (e.g., integration, carve-out, connection request, etc.)
Leading the evolution of the Authentication infrastructure, including architectural improvements and the implementation of new functionalities.
Eliminating vulnerabilities.
Ensuring the availability and integrity of information presented in the groups directories.
Ensuring the preventive and evolutionary maintenance of the AD, PKI, Radius,... platforms (functional and technical specifications, upgrades...) from an operational and security point of view.
Coordinating these evolutions from a technical and organizational point of view.
Assisting application managers in interfacing with IAM solutions.
Ensuring the maintenance of SLAs.
Coordinating the evolutions and projects around authentication platforms and ensuring the satisfaction of internal and external clients.
Resolving critical incidents related to the technologies operated by the team, having previously found the root cause and defined the remediation plan.
Providing support to the OT authentication L2, L3 teams as well as other service lines.
Being the guarantor of the teams documentation (DAT, operational documents, etc.)
Drafting procedures and architecture documents for ADAS services for the team and other teams.
Expected competencies :
Experience
General requirements :
5 years of experience in IAM architecture management (Microsoft ADDS, ADCS, NPS) with a security-oriented mindset, as Level 3 Support (last level before the vendor)
Fluent English
Experience in an international context
Well organized
Required knowledge and skills:
Very good general knowledge of Information Systems and IT professions
Theoretical and operational knowledge of IT organizations
Mastery of Windows AD 2019 / Microsoft PKI environments
Mastery of authentication and federation protocols
Mastery of automation tools (Powershell)
Ability to effectively manage a crisis situation (technical problems)
Mastery of AD, Microsoft PKI administration tools (Admin Center, DSC, GPO, ...)
Ability to analyze the level of risk and make informed decisions.
Nice to have :
Good knowledge of AWS.
Knowledge of the Sectigo product or equivalent public PKI product.
Good knowledge of Radius (NPS).
Ability to simplify and synthesize complex situations, taking into account all elements.
Knowledge of managing Master Servers and administration workstations.
Microsoft Certification : Windows Server Hybrid Administrator Associate
Other critical skills:
Passion and enthusiasm
Customer orientation and a taste for teamwork (openness, interpersonal skills)
Very good presentation and communication skills (written and oral)
Analytical skills
Autonomy
A demonstrated ability to successfully solve problems and manage multiple tasks/priorities.
