公司规模:1000人以上
公司性质:外商独资
招聘人数:1人
| 职位性质: | 全职 | 专业要求: | 不限 |
|---|---|---|---|
| 招聘日期: | 2025.02.06 ~ 2025.04.11 | 工作地点: | 上海 |
| 更新日期: | 2025.02.06 | 工作经验: | 十年以上 |
| 外语要求: | 英语精通 | 职称要求: | 无职称 |
| 学历要求: | 本科及以上 | 工资待遇: | 300000 - 450000 |
Locations:
Germany (Pullach), Slovakia (Bratislava), US (Tonawanda, Houston, Danbury)
Job Responsibilities:
· You will plan, support, implement, and design a directory synchronization system for Microsoft Active Directory and Windows-based systems across the enterprise, including directory and identity management solutions as Bravura Security suite or Beyond Trust.
· You will also manage the Implementation of Business-driven changes, Configuration of Group Policies, and Integration of AD Management tools/services.
· Independently manage and perform engineering lead role for large scale Active Directory and Identity Management projects.
· Analysis, design, capacity planning and implementation of Active Directory Security.
· You will monitor and enhance secure Active Directory architecture standards (Semperis DSP, PingCastle, BloodHound, ForestDruid).
· Actively lead the creation and updating of standards and reference architectures. These reference architectures will provide direction and guidance on proper compliance with defined corporate standards while ensuring deploying secure infrastructure solutions.
· You will be responsible for leading Active Directory infrastructure risk assessments/audits, making decisions on threat modeling and proper security service design and implementation.
· Communicate and collaborate with cross-functional peers outside of Center of Excellence, including Second-line Risk and Enterprise Risk Management (SOC).
· Participate in the development of the security roadmap and technology security vision.
· You will also act as an advocate for Active Directory security and lead efforts to promote security awareness at all levels of the organizations.
Required Qualifications & Experience:
· You will possess a bachelor’s degree in information technology, computer science or closely associated field with at least 7 years of experience in a globally operating company.
· You will have a strong understanding of Active Directory Attributes, LDAP Queries, PowerShell Scripting to Modify AD Attributes, Group Policy Analysis, Group Policy Object (GPO) Configuration & Item-Level Targeting, Workstation Configurations, Browser Configuration Settings, familiarity with Applications that integrated with Active Directory.
· You must have working knowledge of GPOs, AD Sites, Replication Topology, and native AD troubleshooting tools as Microsoft System Center Operations Manager.
· Thorough functional understanding and ability to configure Active Directory Server Roles (CAs, IIS, File, DNS, DFS-R).
· You will have strong knowledge of permissions that are granted natively to various Microsoft Built-In Groups to perform Active Directory Administrative Functions, knowledge of native permissions granted when building AD objects, knowledge of permissions granted natively to Built-In Groups via GPOs and/or Local Policies.
· Active Directory Disaster Recovery (Semperis ADFR) experience.
· You must have expert level knowledge about Active Directory, Identity and User access management.
· Advanced Windows and Linux operating systems knowledge.
· You will also have advanced knowledge in Hypervisor technology as VMWare ESXi and Microsoft Hyper-V.
· Understanding of ICS (Industrial Control Systems) is required.
· Experience with integration of applications with Active Directory via LDAP(S), NTLMv2, Kerberos, RADIUS, MFA for authentication and authorization.
· At least 5 years of Active Directory technical experience that includes the operational support, design, and implementation of large-scale, enterprise level solutions.
· Overarching broad and deep technical experience with Active Directory Security.
· Extensive experience and advanced knowledge in implementing Windows security concepts and policies, least–privilege design principles.
· Experience with managing and troubleshooting the intricacies of AD integrated DNS.
· Advanced PowerShell scripting experience and capabilities.
· Extensive and deep knowledge of Group Policy Objects (GPO’s), engineering and implementation.
· Red Team assessment exposure and interaction.
· Identity and access management; tracking and creating/enforcing policies that govern system access sensitive DCS technology (iFix, Wonderware, Siemens PCS7) resources and information assets.
· Demonstrated ability to identify risks associated with business processes, operations, technology projects and information security programs.
· Ability to function as an Enterprise Identity Management security subject matter expert who can explain complex topics to those without a technical background.
· Ability to troubleshoot Active Directory and familiarity with the NIST cybersecurity framework (for OT) and the Purdue Mode.
林德(Linde)是全球领先的工业气体和工程公司之一,2023年销售额为330亿美元。每一天,我们矢志不渝,践行企业使命——精益丰产,惠泽全球,以高质量的技术、服务和解决方案,帮助客户取得更大的成功,同时保护我们的地球使之可持续发展。
林德所触及的终端市场涵盖众多行业,包括化工与能源、食品与饮料、电子、医疗健康、制造业以及金属和矿业等。而林德的技术和所生产的工业气体则应用于各种领域——从对于能源转型至关重要的清洁氢能的生产和碳捕捉系统,到拯救生命的医用氧和用于电子行业的高纯及特种气体等。同时,林德还提供一系列前沿的气体处理解决方案以支持客户业务发展、提升效率并减少碳排放量。
如需了解有关公司以及产品和服务的更多信息,请访问林德公司网站www.linde.com。
您应聘我们的职位之前,请您仔细阅读我们的《林德中国应聘者隐私政策》(http://www.linde.com.cn/zh/careers/applicant-privacy-policy/applicant-privacy-policy.html),您投递我们的职位视为您已阅读并同意《林德中国应聘者隐私政策》。
