Active Directory Engineer

Job Title: Sr. Active Directory Engineer

Location: Alpharetta, GA || Berkeley Heights, NJ || Frisco, TX || Remote

Job Type: W2/ Fulltime with Infinite Computer Solutions

Position Summary

The Active Directory (AD) Trust Remediation Analyst will play a critical role in decommissioning an AD forest trust. This role involves analyzing dependencies, validating migration plans, coordinating across IT/business units, and ensuring a smooth transition of resources and users to a modern identity management solution. The ideal candidate possesses a strong Active Directory background, problem-solving ability, attention to detail, and excellent communication skills.

Skillset & Experience

• Experience: Proven IT analyst experience with direct involvement in Active Directory administration, analysis, or migration projects.
• Active Directory Expertise: Strong knowledge of AD forests, domains, trusts, group policies (GPOs), permissions, authentication, and replication concepts.
• Technical Skills & Tools:
• Scripting & Automation: PowerShell, VBScript, Batch scripting.
• Identity & Access Management: Active Directory Federation Services (ADFS), Azure Active Directory etc.
• Directory & Server Platforms: Windows Server (2012, 2016, 2019, 2022), DNS, DHCP.
• Monitoring & Reporting: Microsoft Identity Manager (MIM)/ Splunk, custom dashboards, Excel
• Networking & Security: Ports/protocols (SMB, LDAP/LDAPS, RDP, SQL), PKI/Certificates, TLS, firewall rules.
• Migration/Integration Tools: Quest Migration Manager, ADMT (Active Directory Migration Tool), BeyondTrust, or equivalent.
• Analytical Skills: Strong ability to identify dependencies, assess risks, and propose solutions.
• Communication: Excellent written and verbal skills, able to explain technical issues to non-technical stakeholders.
• Project Management: Capable of managing priorities, working in Agile/Waterfall delivery models, and supporting cutover/migration schedules.
• Collaboration: Demonstrated success working with cross-functional IT/business teams.
• Attention to Detail: Commitment to accuracy, documentation quality, and compliance standards.

Essential Job Duties and Responsibilities

1. Dependency Analysis
• Perform detailed analysis of applications, resources, and services dependent on the existing AD trust.
• Document dependencies, risks, and impacts of moving the trust to one-way selective and eventual removal.
2. Data Collection
• Use PowerShell and other tools to gather information on group memberships, ACLs, and SPNs.
• Organize collected data for use in migration planning.
3. Data Validation
• Partner with application owners and IT teams to validate and cleanse collected data.
• Ensure data accuracy to enable effective migration planning.
4. Application/Port Usage Analysis
• Assess and document ports and protocols used by services (e.g., SMB 445, SQL 1433, LDAP 389/636).
• Provide insights for impact assessment and remediation strategies.
5. Migration Planning Support
• Collaborate with Identity, Server, and Project Managers to refine migration strategies.
• Assist in designing plans for user/group migration, application repointing, and access updates.
6. Risk Assessment
• Identify risks related to trust modification/removal.
• Propose mitigation strategies and contingencies in collaboration with stakeholders.
7. Reporting and Documentation
• Develop reports, dashboards, and presentations to communicate findings and recommendations.
• Maintain detailed project documentation for audit and compliance needs.
8. Project Coordination
• Coordinate with IT and business teams (network, security, application support).
• Ensure synchronized and efficient remediation efforts.
9. User and Resource Migration Support
• Provide troubleshooting and validation support during migration phases.
• Assist with post-migration cleanup and verification activities.
10. Stakeholder Communication

• Serve as liaison between technical and business teams.
• Provide timely updates and address project-related inquiries.