Key Facts

Remote From:

Algeria

Category: Infrastructure Architect

Full time

Senior (5-10 years)

English

Hard Skills

Active Directory Splunk ServiceNow Windows PowerShell Privileged Access Management Operations Security

Roles & Responsibilities

Bachelor's degree in Computer Science, Information Technology, Cyber Security, or related field.
10+ years of experience in Microsoft infrastructure, security, and enterprise architecture.
Strong expertise across Active Directory, Microsoft Defender for Endpoint, Microsoft Intune, AD CS/PKI

Requirements:

Produce detailed Low Level Design (LLD) documents and architecture governance artifacts across assigned infrastructure domains.
Design and implement Active Directory architectures, including multi-forest environments and secure authentication.
Architect and manage Microsoft Defender for Endpoint, Intune, endpoint hardening, and security compliance.
Design, implement, and manage Splunk SIEM platforms, including log ingestion, monitoring, and security analytics.

Duncan & Ross Consulting

Information Technology & Services

About Duncan & Ross Consulting

Duncan & Ross Consulting offers integrated and customer oriented services in Technology, Digital Engineering and Engineering in different industries: Aerospace, Construction, Defence, Energy (O&G, Solar PV/CSP, Wind, Biomass, Hydropower, Geothermal Power, Nuclear), Manufacturing, Telecom & Railway. We unlock the potential of our customers and our consultants through our long-standing experience and our broad knowledge network. Duncan & Ross can draw on its worldwide network of human capital, engineering consulting and quality oriented solutions. Our customers will profit from these synergies that play an important role in the processing of our projects. - Technology: o Infrastructure, Security, Cloud, Telecommunications, IT Support, o Industry Solutions / ERP/CRM o Business Intelligence & Analytics. - Digital Engineering: o Design Engineering o BIM Implementation o 3D modelling – 4D Construction Simulation – 5D Cost Estimation o Clash Detection & Resolution o Content Creation o Automation o Rendering & Visualization o BIM Asset Management o Digital Twin - Engineering: o Product Engineering o Electronics o Automation o Mechatronics o Nanotechnology o Mechanical Engineering o Electrical Engineering o Field Services

Company type: Scaleup

Industry: Information Technology & Services

Founded: 2018

Company size: 201 - 500

Website LinkedIn See all jobs →

Job description

Job Summary

We are seeking an experienced Senior Infrastructure LLD Architect to produce Low Level Design documentation for a large-scale banking infrastructure project. The engagement is remote, contract-based (2 months), and requires immediate availability. The candidate will work as part of a delivery team supporting a structured infrastructure rollout, covering Active Directory, Identity & Access Management, Endpoint Security, PKI, PAM, SIEM, Windows Infrastructure, Provisioning, and ITSM platforms within secure, highly available enterprise environments.

This is a delivery-focused role. Senior professionals only — 10+ years minimum.

Key Responsibilities

Produce detailed Low Level Design (LLD) documents and architecture governance artifacts across assigned infrastructure domains.
Design and implement Active Directory (AAA) architectures, including multi-forest environments, tenant isolation, RBAC, delegation models, and secure authentication.
Architect and manage Microsoft Defender for Endpoint, Intune, endpoint hardening, EDR, vulnerability management, and security compliance.
Design and maintain Group Policies (GPOs), security baselines, and endpoint configuration standards.
Implement Network Policy Services (NPS) and secure 802.1X authentication solutions using RADIUS and EAP-TLS.
Design and manage Microsoft PKI (AD CS), including Offline Root CA, Issuing CAs, certificate lifecycle management, CRL, and OCSP.
Support core Microsoft infrastructure services including DNS, DHCP, NTP, DFS, WSUS, File Services, and Bastion Hosts.
Design and implement One Identity Safeguard PAM solutions including password vaulting, session management, privileged access governance, and JIT access.
Architect and manage Splunk SIEM platforms, including log ingestion, indexing, clustering, monitoring, and security analytics.
Design and support MECM/SCCM provisioning and operating system deployment solutions.
Develop and optimize ServiceNow Incident Management workflows, integrations, CMDB, SLAs, and escalation processes.

Requirements

Bachelor's degree in Computer Science, Information Technology, Cyber Security, or related field.
10+ years of experience in Microsoft infrastructure, security, and enterprise architecture.
Strong expertise across:
- Active Directory (AD DS)
- Microsoft Defender for Endpoint
- Microsoft Intune
- AD CS / PKI
- NPS / RADIUS / 802.1X
- One Identity Safeguard PAM
- Splunk Enterprise
- MECM / SCCM
- ServiceNow
- PowerShell Automation
Proven experience producing LLD documentation in enterprise delivery environments.
Strong understanding of Zero Trust, Identity Security, Privileged Access Management, and Security Operations.
Schengen visa holder preferred but not required.