Uniper

IT Security Directory

Posted Sep 1, 2021
Project ID: UNEPJP00004322
Location
Düsseldorf
Hours/week
40 hrs/week
Timeline
5 months
Starts: Sep 13, 2021
Ends: Jan 31, 2022
Payrate range
Unknown

Task description

 

The scope of services includes the following tasks, which are performed independently:

- Analyze and review AD & AAD Security concepts and settings according to best practices and security standards.
- Configure stable and secure Active Directory and Azure Active Directory operations by changing and improving the security concepts based on the previous analysis.
- Analyze and review AD & AAD for potential architectural changes and improvements. Consult Uniper based on the conducted analysis and reviews. Update existing or create new documentation for each new or updated service.
Create documentation with MS Teams, Word, Powerpoint, Sharepoint with all results and present it to the Service Owner for a sign off.
- Run AD & AAD assessment and trigger housekeeping and cleaning up activities and check if the service runs stable and if that data (App data, User data) is up to date in both Directories. Utilize best practices tools and standards either from Microsoft or third party developers.
- Evaluate SailPoint integration of AD/AAD and possible ServiceNow integration to AAD/AD  (automated provisioning and object import/export). Document potential requirements for each integration and potential tasks based on the “AD&AAD” requirements.
- Consult and steer the internal operations teams in handling issues and doing updates in Microsoft AAD Conditional Access to provide secure and smooth user experience and secure AAD service. Prepare and set up potential calls or workshops (online) and prepare any kind of required documentation.
- Develop an Access Management solution based on Azure AD Premium considering the Uniper Identity Management Security strategy and the existing architecture (Azure AD solution). Analyze the status quo continuously and create documentation in order to present it to Uniper for a sign off.
Consult the Uniper Directory service team by creating proposals (Word, PowerPoint, Teams) in accordance with the Uniper strategy and sharing those with the team.
- Create, maintain and synchronize the hybrid identities in Microsoft AD and Azure AD with Azure AD Connect.
Integrate 3rd party business applications with the Azure AD identity infrastructure and support SSO (Single Sign-On) with SAML and OAuth. Integrate the SSO environment into SAML and OAuth protocols. Consult the internal applications owners.
- Consult and work together with the Directory Service team on the solution for the 2nd-factor authentication for mobile devices with Azure AD Premium. A potential solution should be developed by open discussions (MS Teams) or any kind of workshop and should also be documented and signed by the Service Owner.
- Consult the Uniper Application, Architecture and Development teams by evaluating and assessing technical and business requirements using tools like Azure DevOps dashboard. Document and share the evaluated requirements with the above mentioned stakeholders after the assessment (MS Teams, SharePoint, Word, PowerPoint).
- Consult Uniper in the technical and functional review of the approach proposed by the provider for implementation and migration. Uniper will conduct further negotiation.
- Identify and check migration activities (best practice for migration, issue management, steering of migration). Possible migration activities: to remove existing DomainController´s from UTZ DataCenter or how B2B partners are about to be integrated in Azure Active directory. Consult Uniper Service Owner to get an understanding about any planned migration activities or to highlight any identified migration activities. Create documentation with MS Teams, Word, Powerpoint, Sharepoint with the results and present it to Uniper for a sign off.
- Review and assess the used tools based on technical expertise and know-how for the migration project(s):
* Access management solutions based on Azure AD Premium
* Active Directory & Azure AD
* IdP protocols like SAML 2.0 / OAuth 2.0
* Microsoft Identity Management Tools (MIIS, FIM, AADC)
* Role-based access controls in Azure with RBAC and or PIM
* B2B and Guest User handling in Azure AD
* Microsoft Cloud Application Security (MCAS)
* B2C User integration and maintenance
- Create documentation with potential suggestions/recommendations and present it to the Uniper Service Owner for a sign off (Online, MS Teams, Presentation, Meetings, PowerPoint, Word, Excel).

Uniper provides all necessary information, access to the systems and requirements in advance.

Similar projects

+ Search all projects