Active Directory Architect

Apply now »

Date: 22-Mar-2023

Location: Bangalore, KA, IN

Company: Alstom

Req ID:407954 

We create smart innovations to meet the mobility challenges of today and tomorrow. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses and driverless trains, as well as infrastructure, signalling and digital mobility solutions. Joining us means joining a truly global community of more than 75 000 people dedicated to solving real-world mobility challenges and achieving international projects with sustainable local impact.    


You will be part of the Workplace and Collab Architecture team as an Azure AD – Active Directory Architect. Your main responsibilities will be the design, planning, implementation and governance of architecture. You will contribute to establish a 360° view of services through the following activities: Architecture design, business case / TCO calculation, service & process design, user experience evaluation, project delivery, quality and conformity audits, roadmap definition and cost optimization. As an architect, you will also be interacting with Operations Management team and solution vendors to coordinate resolution of problems requiring Level 4 support. Work with program team to deliver the identified projects.



 You will report to IS&T Workplace and Design Manager, based in Bangalore, India.


Key Responsibilities and Accountabilities:


  • Accountable for all Enterprise AD and Azure AD environments hosted and maintained in and for Alstom Transport IS&T infrastructure.
  • Responsible for planning and designing of Active Directory installations across the organization.
  • Drive the execution of the next generation of Active Directory (AD) technologies, including owning the overall roadmap
  • Work closely with technology and business stakeholders across the organization
  • Establish AD security architecture and strategies
  • Securely manage authentication and authorization solutions for on-premise and cloud solutions
  • Develop metrics that demonstrate the current risk state, indicators of progress, and directory services business alignment
  • Monitor technology and security developments to ensure the company’s security framework follows industry best practices
  • Play a key and influential role working with others; this include engineering and operations teams.
  • Participate in the identification of vulnerabilities and their mitigation
  • Participate in the analysis and redesign of existing infrastructure systems and services
  • Participate in the analysis, design and implementation of future infrastructure systems and services
  • Create and maintain documentation on SOPs and System Design
  • Research, evaluate, recommend and implement new technologies
  • Perform capacity planning, upgrades and expansion of Active Directory environment
  • Maintain effective communications with vendors, peers and clients in support of assigned projects
  • Maintain an awareness of business, technical, architecture, infrastructure, and end user support issues and act as sounding board to aid in the development of creative solutions
  • Collaborate with business partners and the various IT functional areas to prioritize projects, and develop and implement system plans that address the functional requirements of the business, and adhere to established strategic business and systems objectives
  • Provides capacity planning recommendations to senior management
  • Ensure Backup & Recovery procedures & policies are in place and implemented for all Active Directory.
  • Drive efficiency and reduce the Operating cost of the Infrastructure.
  • Analyse facilities bandwidth requirements and system interdependencies along with other IT towers. Contribute to capacity planning models




Key Responsibilities & Accountabilities


Service Management

·   Service Design: High-level architecture design and Low Level design for core AD and Azure AD related Subjects .

·   Plan and prepare design review presentation with Architects and Service Managers to validate or decide on major architecture evolutions

·   Service Transition: Supervise strategic partners and subcontractors to produce low level design, build and deploy new IT services (or service changes)



 Project delivery

·   AD/Azure AD projects: Lead the design and supervise build and move to run activities

·   Participate in project steering committees

·   Participate in corporate Merger & Acquisition workshops and prepare scenarios for AD/Azure AD related topics


Problem resolution

·   Collaborate with Workplace and Application Operations team for problems requiring AD technical expertise

·   Interact with vendor support for Level 4 problem escalation


 Audits & Service improvement

·   In collaboration with CIO Office, perform service quality & process efficiency reviews, propose and put in place remediation plans

·   Contribute and provide full support in performing security audits on AD/Azure AD portfolio services and solutions

·   Evaluate user experience with intelligent use of device monitoring tools, Business Partner feedback and user satisfaction survey


Innovation & Knowledge Management

·   Organize meetings with vendors and partners for roadmap reviews

·   Identify and promote self-service opportunities

·   Identify cost saving levers

·   Identify solution segments that can be moved to Cloud and conceive transformation plan and budget

·   Organize knowledge sharing sessions with other IS&T teams such as Operations team, Unified Collaborations team, Security and End user Computing teams.




·   Keep up with the fast-paced continuously evolving technologies supplying the Digital Workplace services

·   Complexity of AD/Azure AD service due to important dependencies with other services and infrastructures

·   Maintain a rationalization and standardization posture towards businesses and application teams

·   Maintain service quality and business continuity while preparing a forthcoming strategic Merger & Acquisition

·   Manage strategic partners and subcontractors to produce up to the required quality and in given timeline



To be considered for this role, candidate need to demonstrate the following skills experience and attributes:


·   Graduated with a bachelor’s degree (min.) in Engineering, Science or Technology should have at least 8 years hands on experience in IT, with majority of it in Digital Workplace

·   Should have very good general design and architecture knowledge

·   Good knowledge of ITIL processes and framework

·   Ability to collaborate, influence and motivate cross-functional teams

·   Team player

·   Ability and flexibility to adapt to change, including shifting and competing priorities

·   Demonstrates strong customer, quality, cost and delivery focus

·   Proven ability to work in global companies and delivering infrastructure across multiple geographies

·   Experience in working a multicultural environment in an international context

·   Demonstrates strong autonomy involving remote management

·   Fluent in English and at ease in making oral presentation to a Management level audience

·   International mobility with occasional business trips to France

·   Advanced understanding of IAM solutions and related technologies including Azure AD, Microsoft Identity Manager (MIM), Kerberos, LDAP, SAML, group and role mapping, PKI, DNS, DHCP and GPO implementations

AD Migration projects (company acquisitions AD merge, consolidation or optimization AD environment) hands on experience

Should have hands on experience in DR tests/gone through DR activity.

Good to have experience in handling security/compliance Audits related to Active Directory

Experience in implementation of SSO in ADFS

project experience with AD migration activities and infra upgradation activities' (OS upgrade, functional level upgrade)

An agile, inclusive and responsible culture is the foundation of our company where diverse people are offered excellent opportunities to grow, learn and advance in their careers.  We are committed to encouraging our employees to reach their full potential, while valuing and respecting them as individuals.   

Job Segment: Cloud, Developer, User Experience, Technology, Research