Active Directory Engineer

Job Title: Active Directory Engineer / Analyst
Location – BH,NJ, Alpha, GA, Frisco, TX or Remote Full-time/ W2 – with Infinite Computer Solutions

Position Summary

The Active Directory (AD) Trust Remediation Analyst will play a critical role in decommissioning an AD forest trust. This role involves analyzing dependencies, validating migration plans, coordinating across IT/business units, and ensuring a smooth transition of resources and users to a modern identity management solution. The ideal candidate possesses a strong Active Directory background, problem-solving ability, attention to detail, and excellent communication skills.

Skillset & Experience

• Experience: Proven IT analyst experience with direct involvement in Active Directory administration, analysis, or migration projects.

• Active Directory Expertise: Strong knowledge of AD forests, domains, trusts, group policies (GPOs), permissions, authentication, and replication concepts.

• Technical Skills & Tools:

• Scripting & Automation: PowerShell, VBScript, Batch scripting.

• Identity & Access Management: Active Directory Federation Services (ADFS), Azure Active Directory etc.

• Directory & Server Platforms: Windows Server (2012, 2016, 2019, 2022), DNS, DHCP.

• Monitoring & Reporting: Microsoft Identity Manager (MIM)/ Splunk, custom dashboards, Excel

• Networking & Security: Ports/protocols (SMB, LDAP/LDAPS, RDP, SQL), PKI/Certificates, TLS, firewall rules.

• Migration/Integration Tools: Quest Migration Manager, ADMT (Active Directory Migration Tool), BeyondTrust, or equivalent.

• Analytical Skills: Strong ability to identify dependencies, assess risks, and propose solutions.

• Communication: Excellent written and verbal skills, able to explain technical issues to non-technical stakeholders.

• Project Management: Capable of managing priorities, working in Agile/Waterfall delivery models, and supporting cutover/migration schedules.

• Collaboration: Demonstrated success working with cross-functional IT/business teams.

• Attention to Detail: Commitment to accuracy, documentation quality, and compliance standards.

Essential Job Duties and Responsibilities

1. Dependency Analysis

• Perform detailed analysis of applications, resources, and services dependent on the existing AD trust.

• Document dependencies, risks, and impacts of moving the trust to one-way selective and eventual removal.

2. Data Collection

• Use PowerShell and other tools to gather information on group memberships, ACLs, and SPNs.

• Organize collected data for use in migration planning.

3. Data Validation

• Partner with application owners and IT teams to validate and cleanse collected data.

• Ensure data accuracy to enable effective migration planning.

4. Application/Port Usage Analysis

• Assess and document ports and protocols used by services (e.g., SMB 445, SQL 1433, LDAP 389/636).

• Provide insights for impact assessment and remediation strategies.

5. Migration Planning Support

• Collaborate with Identity, Server, and Project Managers to refine migration strategies.

• Assist in designing plans for user/group migration, application repointing, and access updates.

6. Risk Assessment

• Identify risks related to trust modification/removal.

• Propose mitigation strategies and contingencies in collaboration with stakeholders.

7. Reporting and Documentation

• Develop reports, dashboards, and presentations to communicate findings and recommendations.

• Maintain detailed project documentation for audit and compliance needs.

8. Project Coordination

• Coordinate with IT and business teams (network, security, application support).

• Ensure synchronized and efficient remediation efforts.

9. User and Resource Migration Support

• Provide troubleshooting and validation support during migration phases.

• Assist with post-migration cleanup and verification activities.

10. Stakeholder Communication

• Serve as liaison between technical and business teams.
• Provide timely updates and address project-related inquiries.