Active Directory Engineer / Analyst

Job Title: Active Directory Engineer / Analyst
Onsite/Remote
Lcoations:Alpahetta,GA/ Frisco,TX/ Berekley Heights NJ
Fulltime Role

Position Summary: The Active Directory (AD) Trust Remediation Analyst will play a critical role in decommissioning an AD forest trust. This role involves analyzing dependencies, validating migration plans, coordinating across IT/business units, and ensuring a smooth transition of resources and users to a modern identity management solution. The ideal candidate possesses a strong Active Directory background, problem-solving ability, attention to detail, and excellent communication skills.

---

Skillset & Experience

Experience: Proven IT analyst experience with direct involvement in Active Directory administration, analysis, or migration projects.

Active Directory Expertise: Strong knowledge of AD forests, domains, trusts, group policies (GPOs), permissions, authentication, and replication concepts.

Technical Skills & Tools:

o Scripting & Automation: PowerShell, VBScript, Batch scripting.

o Identity & Access Management: Active Directory Federation Services (ADFS), Azure Active Directory etc.

o Directory & Server Platforms: Windows Server (2012, 2016, 2019, 2022), DNS, DHCP.

o Monitoring & Reporting: Microsoft Identity Manager (MIM)/ Splunk, custom dashboards, Excel

o Networking & Security: Ports/protocols (SMB, LDAP/LDAPS, RDP, SQL), PKI/Certificates, TLS, firewall rules.

o Migration/Integration Tools: Quest Migration Manager, ADMT (Active Directory Migration Tool), BeyondTrust, or equivalent.

Analytical Skills: Strong ability to identify dependencies, assess risks, and propose solutions.

Communication: Excellent written and verbal skills, able to explain technical issues to non-technical stakeholders.

Project Management: Capable of managing priorities, working in Agile/Waterfall delivery models, and supporting cutover/migration schedules.

Collaboration: Demonstrated success working with cross-functional IT/business teams.

Attention to Detail: Commitment to accuracy, documentation quality, and compliance standards.

---

Essential Job Duties and Responsibilities

1. Dependency Analysis

o Perform detailed analysis of applications, resources, and services dependent on the existing AD trust.

o Document dependencies, risks, and impacts of moving the trust to one-way selective and eventual removal.

2. Data Collection

o Use PowerShell and other tools to gather information on group memberships, ACLs, and SPNs.

o Organize collected data for use in migration planning.

3. Data Validation

o Partner with application owners and IT teams to validate and cleanse collected data.

o Ensure data accuracy to enable effective migration planning.

4. Application/Port Usage Analysis

o Assess and document ports and protocols used by services (e.g., SMB 445, SQL 1433, LDAP 389/636).

o Provide insights for impact assessment and remediation strategies.

5. Migration Planning Support

o Collaborate with Identity, Server, and Project Managers to refine migration strategies.

o Assist in designing plans for user/group migration, application repointing, and access updates.

6. Risk Assessment

o Identify risks related to trust modification/removal.

o Propose mitigation strategies and contingencies in collaboration with stakeholders.

7. Reporting and Documentation

o Develop reports, dashboards, and presentations to communicate findings and recommendations.

o Maintain detailed project documentation for audit and compliance needs.

8. Project Coordination

o Coordinate with IT and business teams (network, security, application support).

o Ensure synchronized and efficient remediation efforts.

9. User and Resource Migration Support

o Provide troubleshooting and validation support during migration phases.

o Assist with post-migration cleanup and verification activities.

10. Stakeholder Communication

Serve as liaison between technical and business teams.

Provide timely updates and address project-related inquiries.