Job Description
Roles & Responsibilities
The Senior SCADA System Administrator is responsible for the design, implementation, administration, and optimization of enterprise identity and system infrastructure, with a primary focus on Active Directory services, authentication mechanisms, and access control within OT environments. The role ensures the availability, security, and resilience of directory and system services supporting critical operations. This position requires strong expertise in system administration, identity and access management, and cybersecurity controls, with emphasis on high availability, operational reliability, and compliance with established cybersecurity standards and best practices.
A. Active Directory Management
Design, deploy, administer, and maintain Active Directory (AD) environments, including forests, domains, trusts, and Organizational Units (OUs).
Manage user accounts, service accounts, groups, and permissions in accordance with Role-Based Access Control (RBAC) and least privilege principles.
Configure, implement, and maintain Group Policy Objects (GPOs) to enforce security baselines, system configurations, and user policies.
Integrate AD with supporting services such as DNS, DHCP, RADIUS, and LDAP-based authentication.
Manage and support LDAP and secure directory services for integration with enterprise and OT/SCADA applications.
Support and optimize authentication mechanisms including Kerberos, NTLM, and SSL/TLS for secure access control.
B. Active Directory Operations Monitoring
Monitor AD replication, domain controller health, performance, and event logs, ensuring directory consistency and operational stability.
Plan, implement, and test AD backup, restoration, and disaster recovery procedures, including periodic recovery drills.
Manage Active Directory transitions and migrations, including coexistence between central and local domain controllers.
Support high availability and redundancy for directory services in mission-critical environments.
C. Troubleshooting and Support
Diagnose and resolve complex AD, authentication, access control, and replication issues.
Provide Tier-3 support to OT operations, protection, and cybersecurity teams for identity and access-related issues.
Coordinate with vendors, system integrators, and service providers to ensure stable and secure directory services.
Support onboarding new systems and applications requiring AD integration or authentication services.
D. Compliance, Reporting, and Documentation
Enforce identity and access security controls, including privileged access management, audit logging, and account lifecycle management.
Ensure AD services comply with organizational cybersecurity policies and relevant standards such as ISO 27001, IEC 62443, and NIST.
Support cybersecurity audits, vulnerability assessments, and compliance reviews, implementing corrective actions where required.