Walk-in || Tcs hiring Windows AD For Chennai
Tata Consultancy Services · Chennai, Tamil Nadu, India
Tata Consultancy Services · Chennai, Tamil Nadu, India
**Job Title:- Window AD** **Experience:-8 10 Years** **Location:-Chennai(24x7 Support / Rotational Shift Model)** **Department:- Information Technology (IT) – Identity & Access Management (IAM) / IT Infrastructure** **Job Summary** We are looking for an experienced **Active Directory (AD) Engineer** with strong expertise in **on-prem AD, identity operations, and security compliance**. The candidate will handle Tier-2/L2-L3 AD operations, support enterprise-scale environments, manage access lifecycle, and ensure adherence to governance and security standards. The role requires close collaboration with infra, security, and application teams. **Key Responsibilities** 1. Active Directory Administration & Operations - Manage and troubleshoot **Domain Controllers, replication, DNS/DHCP dependencies** - Perform **AD health checks** using tools like *dcdiag, repadmin, netdom, event viewer* - Administer **OU structure, GPOs, service accounts, and privileged groups** - Troubleshoot **trust relationship issues** 2. User & Access Lifecycle Management - Handle **end-to-end account lifecycle**: - Provisioning / De-provisioning - Access modifications - Password resets & unlocks - Manage **users, groups, computers, and workstation objects (Tier-2 scope)** - Support **LAPS password management** 3. GPO & Configuration Management - Create, modify, link/unlink, and troubleshoot **Group Policy Objects (GPOs)** - Ensure policy compliance across workstation environments 4. Security, Compliance & Governance - Monitor identity security alerts (**risky users, suspicious sign-ins**) - Ensure adherence to **CISO security baseline and compliance standards** - Manage privileged access using **PIM (Privileged Identity Management)** - Support **audit activities with logs, reports, and documentation** 5. Incident, Change & Problem Management - Handle **L1/L2 escalations** and provide resolution - Participate in **root cause analysis (RCA)** and problem management - Support **change management, impact analysis, and validations** 6. Monitoring, Reporting & Audit - Track **account activities, group changes, and access reviews** - Perform **stale object cleanup and governance reviews** - Prepare and publish **monthly/yearly KPI, KSI, and SLA reports** 7. Collaboration & Stakeholder Management - Work with **L3 teams** for Tier 0/1 components (DCs, PKI, Schema) - Coordinate with **infra, security, and application teams** - Participate in **operational reviews and governance forums** 8. Automation & Continuous Improvement - Identify opportunities for **automation and self-service enablement** - Use **PowerShell scripting** for AD administration and automation 9. Hybrid Identity & Cloud Integration - Support **Azure AD / Entra ID operations** - Troubleshoot **Azure AD Connect synchronization issues** - Implement **MFA, SSPR, Conditional Access, and Identity Protection** 10. Knowledge Sharing & Team Leadership - Guide L1 teams and handle escalations - Conduct **training sessions and knowledge sharing** within the team **Mandatory Skills** - Active Directory (On-Prem AD) Administration - GPO Management & Troubleshooting - AD Health Monitoring Tools (dcdiag, repadmin, etc.) - User Lifecycle & Access Management - Security & Compliance (IAM, PIM) - Incident, Change & Problem Management - PowerShell Scripting **Good-to-Have Skills** - Azure AD / Entra ID (Hybrid Identity) - Privileged Access Management (PAM) - Automation & Self-Service Tools - Knowledge of **Zero Trust Security Model** - Experience with large enterprise environments (50k+ users) **Soft Skills** - Strong analytical and troubleshooting skills - Effective communication and stakeholder management - Leadership and mentoring capabilities - Attention to detail and process adherence **Working Conditions** - Willingness to work in a **24x7 rotational shift environment** - Ability to handle **critical incidents and escalations** **Educational Qualification** - Bachelor’s degree in IT, Computer Science, or related field **Hiring Note** Candidate should have strong hands-on experience in **enterprise Active Directory environments**, identity security, and access lifecycle management, with the ability to support **hybrid identity solutions and compliance-driven operations**. **Primary Skills (For Portal Entry)** - Active Directory - Azure AD / Entra ID - Identity & Access Management (IAM) - GPO - PowerShell - Conditional Access / MFA - ServiceNow