Senior Active Directory Specialist
We are currently recruiting for a Senior Active Directory Specialist to be a part of our Active Directory Support Team! We are a 'smart working' organisation and can be flexible with location, however, some travel may be required once the pandemic is over.
The Active Directory (AD) Team plays a key role in providing specialist support for Aviva's UK, Ireland, Canada and Investors international markets. Aviva is a complex environment with multiple domains and the AD Team are central to maintaining service while delivering improvements and simplification.
We are seeking your global enterprise experience to provide technical direction and oversight supporting our BAU functions and project deliveries. As the Senior Active Directory Specialist, you will also ensure that active directory and our wider end user services are continually enhanced, security posture is optimised while balancing service availability, user experience and the needs of the business. You will also be involved with solution design, change oversight and delivery as well as more complex incident resolution.
Responsibilities of the role:
- Review designs from projects/architecture to ensure they align with service strategy and security requirements
- Responsible for technical governance for the team, ensuring activities are completed in line with service strategy
- Active contribution in the Global Active Directory Governance Board
- Oversight of key 3rd party suppliers, to ensure smooth operations, both procedurally and strategically
- Define ongoing operational activities improvements and approaches to ensure the services remain healthy, secure and performant
- Oversight of proactive improvement activity such as object remediation, GPO tuning and other remedial activity
- Review DNS requests/changes
- Define service roadmaps to ensure services are future proofed and able to meet the changing needs of the business
- Define CIS L-1 standards and working with key 3rd party suppliers to ensure consistently applied across the Active Directory estate
- Conduct vulnerability scanning for Active Directory environment via utilisation of industry-standard toolsets (PingCastle, Bloodhound etc.) to ensure hardening activity is consistently delivered
- Technical governance and review of active directory architecture (Trusts, Sites and Services, DFS, etc.)
- Own the technical risks associated with the active directory service, developing appropriate strategies to mitigate
Skills and experience we're looking for:
- In-depth knowledge of Active Directory services in a global enterprise environment (Trusts, Sites & Services, DFS, etc.)
- Familiarity with vulnerability scanning tooling such as Bloodhound and PingCastle (or equivalent)
- Ability to engage stakeholders in planning, progress, and risk reporting processes
- Experience with applying insights, experience, and assurance techniques to BAU, projects, and plans
- Excellent stakeholder management and being able to distil complex technical requirements into a format which can be easily understood
- Excellent working knowledge of MMC, PowerShell, Win10, networking topology and concepts
- Understand Azure active directory, demonstrated through appropriate certification
- Exposure to the principles of Systems Thinking
- Appropriate MCSA/MCSE certification
- Good understanding of the ITIL framework, demonstrated through appropriate certification
What will you get for this role?
- Salary between £55,000 - £60,000 depending on skills, experience and qualifications
- Generous defined contribution pension scheme
- Annual performance related bonus and pay review
- Holiday allowance of 29 days plus bank holidays and the option to buy/sell up to 5 additional days
- Up to 40% discount for some Aviva products through "My Aviva Extras" plus discounts for Friends and Family (some exclusions apply)
- Excellent range of flexible benefits to include a matching share save scheme
Working at Aviva
At Aviva, we're people with a purpose. To be with you today, for a better tomorrow.
We bring this to life by ensuring managing risk is at the heart of the way we all work. We love people who do the right thing for our customers, and our colleagues. We want people who speak up, who take ownership, and who make good decisions.
The way we do this is important too, we're all about our people - that's you - so we can be pretty flexible. If you want to work from home some of the time or change your hours so you can pick up your kids or care for someone in your family, we're very open to that. In fact, we don't advertise roles as either part or full time, because we know each person has different needs, just as each business area has different needs. So, it's up to you to discuss working hours during your interview.
We care deeply about being inclusive and that means we encourage applications from people with diverse backgrounds and experiences. We want our employees to bring their whole self to work and that starts with you.
We interview every disabled applicant* that meets the minimum criteria for the job. Once you've applied, please send us a separate email stating that you have a disclosed disability and we'll make sure we interview you.
We'd love it if you could submit your application online. If you require an alternative method of applying, please give Lacey Lane a call on 0207 255 0884 or send an email to email@example.com
*As defined in The Equality Act 2010*. By 'minimum criteria' we mean you should provide us with evidence which demonstrates that you generally meet the level of competence required and have the qualifications, skills or experience defined as essential to perform the role.