Enterprise Architecture Consultant
- Verfügbarkeit einsehen
- 0 Referenzen
- auf Anfrage
- 19057 Schwerin
- National
- de | en
- 02.09.2024
Kurzvorstellung
Qualifikationen
Projekt‐ & Berufserfahrung
10/2023 – offen
Tätigkeitsbeschreibung
Device Deployment:
Develop a standardized process for deploying devices within the SAE.
Ensure automated and secure deployment methods are in place.
Update Service:
Implement an update management system to ensure all devices and software within the SAE are up-to-date.
Develop policies and procedures for regular updates and patch management.
Windows Activation:
Establish a method for activating Windows licenses across the SAE.
Ensure compliance with licensing requirements and automate activation processes.
Group Policy Management:
Design and implement Group Policy Objects (GPOs) to manage user and computer settings.
Utilize Advanced Group Policy Management (AGPM) for enhanced control and auditing.
LAPS (Local Administrator Password Solution):
Implement LAPS to manage local administrator passwords on domain-joined devices securely.
Ensure that passwords are stored securely and accessible only to authorized personnel.
Monitoring:
Set up monitoring systems to continuously track the health and performance of the SAE.
Implement alerts and reporting mechanisms for proactive management.
Logging:
Establish a centralized logging infrastructure to collect and analyze logs from all systems.
Ensure compliance with security policies and facilitate incident response.
Backup:
Develop a comprehensive backup strategy for all critical data and systems.
Implement regular backup schedules and ensure secure storage of backup data.
Network:
Design a secure and efficient network architecture for the SAE.
Implement network security measures such as firewalls, segmentation, and VPNs.
Hosting and Housing:
Ensure the physical and environmental security of the data center hosting the SAE.
Implement access controls and environmental monitoring for the hosting infrastructure.
Secure Data Transfer:
Develop methods for secure data transfer within and outside the SAE.
Implement encryption and secure communication protocols.
Active Directory:
Design and manage the Active Directory infrastructure for user authentication and authorization.
Implement security best practices and maintain the integrity of the directory services.
Access Control and Identity Management:
Develop an access control framework based on principles such as least privilege and role-based access control (RBAC).
Implement identity management solutions to ensure secure access to resources.
AGPM (Advanced Group Policy Management):
Utilize AGPM to manage and control changes to Group Policy Objects.
Ensure version control and auditability of policy changes.
Role Definitions:
Define and document roles and responsibilities within the SAE.
Ensure clear separation of duties and access controls based on roles.
Cyber Security, Identitätsmanagement, Active Directory
5/2020 – 3/2024
Tätigkeitsbeschreibung
- Aufbau und Konzeption Hybrid Azure Cloud Infrastruktur
- Aufbau und Konzeption Enhanced Security Admin Environment
- Implementierung PKI Umgebung
- Einführung einhaltlicher internationaler Sicherheitsstandards
- Entwicklung PAM Solution
- Entwicklung Governance für Active Directory, Entra ID & M365
Cyber Security, Identitätsmanagement, Active Directory, Windows Powershell, Microsoft Azure
9/2019 – 4/2020
TätigkeitsbeschreibungHybrid Azure Cloud Infrastruktur Konzeption und Implementierung
Eingesetzte QualifikationenCyber Security, Projektmanagement (IT), Active Directory, Microsoft Azure
Ausbildung
IHK Ostwestfalen zu Bielefeld
Bielefeld
Persönliche Daten
- Deutsch (Muttersprache)
- Englisch (Fließend)
- Europäische Union
Kontaktdaten
Nur registrierte PREMIUM-Mitglieder von freelance.de können Kontaktdaten einsehen.
Jetzt Mitglied werden