Job Description
Provide L2 support for Active Directory (AD) incidents and requests.
Troubleshoot and resolve issues related to:
Manage and maintain a multi-domain Active Directory environment.
Create, modify, and manage users, groups, service accounts, and OUs.
Perform OU movement, delegation, and access permission management.
Manage Group Policies (GPOs) creation, editing, troubleshooting, and GPO impact analysis.
Handle FSMO roles, replication checks, and AD health monitoring.
Manage and maintain user lifecycle processes: provisioning, de-provisioning, and account management.
Perform AD health checks, monitoring logs and alerts.
Support Active Directory Federation Services (ADFS) and/or Azure AD (if applicable).
Assist in Group Policy creation, testing, and deployment.
Collaborate with L3 and other IT teams for escalation and root cause analysis.
Document all changes, procedures, and troubleshooting steps.
Follow ITIL-based processes (Incident, Problem, Change Management).
Knowledge on RODC concepts
35 years of experience managing and troubleshooting Active Directory in an enterprise environment.
Good knowledge of Windows Server OS.
Experience with:
Group Policy Management Console (GPMC)
PowerShell scripting for AD automation
DNS, DHCP, and FSMO roles
Understanding of AD replication topology and tools like repadmin, dcdiag.
Familiarity with Azure Active Directory, MFA, or AD Connect is a plus.
Strong analytical and problem-solving skills.
Effective communication and documentation skills.
Identity and Access Management
Should have good experience in Hybrid Environment Management
Automation and Scripting
Monitoring and Reporting
Follow company security standards & auditing procedures
Support compliance (ISO, SOC, internal security audits)
Resolve login failures, trust relationship issues, GPO conflicts, and AD replication issues
Troubleshoot authentication, Kerberos, NTLM, DNS-related issues
Write and maintain PowerShell scripts for automation of AD tasks:
Bulk user creation
OU movement
Group management
Attribute updates
AD health reporting
Familiarity with Azure AD, AAD Connect, SSO/SAML is a plus
Certifications:
Microsoft Certified: Identity and Access Administrator Associate
Microsoft Certified: Windows Server Hybrid Administrator Associate
Microsoft Azure Administrator (AZ-104) MCSA / MCSE (Legacy)
Microsoft Identity and Access Administrator (SC-300)
Project management skills
Strong documentation and reporting skills.
Ability to communicate with cross-functional teams.
Good analytical and problem-solving skills.
Ability to handle high-severity incidents responsibly.About Company
Tata Communications is a digital ecosystem enabler that powers today’s fast-growing digital economy. We enable the digital transformation of enterprises globally, including 300 of the Fortune 500. We carry around 30% of the world’s internet routes and connects businesses to 60% of the world’s cloud giants.
We have been a part of the rich heritage of the internet in India. Over the last 25 years, enterprise-enabled services have been essential to the adoption of digital services in the country. Connectivity is an essential fabric of sustenance for the economy. We are committed to enabling Industry leaders in this New World of Communications™, with our unique promise of delivering secure connected digital experiences.
In 2020, we announced the launch of ‘Secure Connected Digital Experience’ (SCDx), a proposition intended to meet this growing, worldwide demand for new ways of operating, which includes far higher levels of working from home, rising security risks, a shift to digital commerce, and more contactless experiences. It will help companies currently relying on short-term fixes by providing holistic, secure, enterprise-level digital solutions that address current challenges and are fit for the long term.
