Job Description

Roles & Responsibilities

Technical expertise & operations

• Advanced AD administration (DNS, GPO, schema, delegations, Tiering Model, Zero Trust).

• AD lifecycle management (DC upgrade, migration, hardening, audits, remediation).

• Complex AD/Entra ID incident processing, diagnostic logs, action plans.

• Management of the AD DRP (MCO/MCS, RTO optimization).

• Proactive security and DC obsolescence management.

Automation & scripting

• Development and maintenance of advanced PowerShell scripts .

• Automation, technical debt reduction, recurring controls.

• Application of privilege models (Tiering, Enterprise Access Model).

Steering & coordination

• Alignment with AD/IAM/Cyber ​​strategy.

• Structuring the backlog, roadmaps, prioritizing actions.

• Cross-functional coordination with project and security teams.

Communication & reporting

• Visibility on progress, risks, KPIs.

• Writing technical documents, analyses, architectural notes, feedback reports.

Desired Candidate Profile

Techniques : Active Directory, DNS, DFS, GPO, multi-site AD architectures, FSMO, security.

Cloud/Hybrid : Entra ID, Entra ID Connect, API, RBAC, Admin Units.

Security : Zero Trust, Tiering Model, Enterprise Access Model.

Automation : PowerShell (advanced scripts, modules).

Federation (appreciated) : LDAP, Kerberos, SAML, OIDC.

Soft skills : clear communication, simplification, cross-functional management, autonomy, rigor.

Languages : French + English.