Active Directory & Citrix Security Specialist

Active Directory Modernization & Zero Trust POC Implementation Specialist

Contract Position: 3-4 Month Engagement | Remote (India-based preferred)

About the Project

We seek an experienced Active Directory and Citrix specialist to lead a Proof of Concept (POC) for implementing Zero Trust security principles and modern privilege management in a test environment. This POC will establish best practices and automation frameworks for potential enterprise-wide deployment.

Our POC environment simulates a typical enterprise setup with approximately 80 Windows servers, Citrix Virtual Apps infrastructure, and AWS Managed Microsoft AD serving 200+ users. The goal is to develop and validate a methodology for transitioning from traditional broad-access models to granular, role-based permissions without disrupting business operations.

Project Objectives

• Design and implement a least-privilege access model in the POC environment
• Develop automation frameworks for privilege management and monitoring
• Create application compatibility solutions without relying on elevated privileges
• Establish security baselines aligned with Zero Trust principles
• Document repeatable processes for potential production deployment

Key Responsibilities: Assessment & Architecture (Weeks 1-2)

• Evaluate current POC Responsibilities: Assessment environment configuration
• Design target state architecture following Microsoft/AWS best practices
• Develop risk-free migration methodology
• Create comprehensive testing procedures

Implementation (Weeks 3-10)

• Configure granular AD security groups and GPO structure
• Implement privilege access management (PAM) solutions
• Resolve application compatibility challenges using modern approaches (App-V, FSLogix, shimming)
• Optimize Citrix policies for security without impacting user experience
• Develop PowerShell automation for repeatable deployments

Validation & Documentation (Weeks 11-14)

• Conduct security validation testing
• Create operational runbooks and procedures
• Develop monitoring and alerting frameworks
• Provide knowledge transfer sessions (recorded)

Required Technical SkillsMust Have:

• 5+ years Active Directory design and security hardening
• 3+ years Citrix Virtual Apps/XenApp administration
• Expert-level PowerShell scripting and automation
• Experience with AWS Managed Microsoft AD or similar cloud AD services
• Proven track record of privilege reduction projects
• Strong understanding of Kerberos, NTLM, and Windows authentication
• Application compatibility resolution (ACT, App-V, MSIX)

Preferred:

• Healthcare/Biotech industry experience
• HIPAA/GxP compliance knowledge
• Security certifications (CISSP, CySA+, CEH)
• Experience with FSLogix, Citrix WEM, or similar technologies
• Six Sigma or ITIL methodology experience

Project Environment Details

• Windows Server 2016/2019/2022 mixed environment
• Citrix Virtual Apps (for application delivery and RDP-like sessions)
• AWS Managed Microsoft AD
• Mixed application portfolio (COTS, web apps, legacy desktop applications)
• Integration with SQL Server and IIS-hosted applications
• 24x7 operational requirement (changes must be non-disruptive)

Deliverables

• Assessment Report - Current state analysis and recommendations
• Architecture Documentation - Target state design and migration path
• PowerShell Script Library - Automated deployment and management tools
• Operational Runbooks - Step-by-step procedures for ongoing management
• Security Validation Report - Testing results and compliance verification
• Knowledge Transfer - Recorded training sessions and Q&A documentation

Engagement Terms

• Duration: 3-4 months (with possible extension for production rollout)
• Time Zone: Flexible, but must accommodate 2-3 hours overlap with US EST
• Rate: Competitive based on experience ($25-45 USD/hour or fixed project cost)
• Location: Remote (India-based preferred for cost optimization)

Ideal Candidate Profile

We're looking for someone who:

• Has successfully completed similar modernization projects
• Thinks like both a security architect and operations engineer
• Can work independently while providing regular updates
• Writes clear documentation and automation code
• Understands the balance between security and usability
• Has a "measure twice, cut once" approach to production changes

How to Apply

Please submit:

• Resume/CV highlighting relevant AD and Citrix projects
• Brief case study (1-2 pages) of a similar privilege reduction project you've completed
• Sample PowerShell scripts demonstrating your automation capabilities
• Rate expectations (hourly or fixed project cost)
• Availability to start within 2 weeks

Interview Process

• Initial screening (30 min video call)
• Technical discussion (1 hour - be prepared to discuss approach and past projects)
• Practical exercise (provide solution architecture for sample scenario)
• Final decision within 48 hours

Bonus Points For:

• GitHub repository with relevant PowerShell modules
• Published articles/blogs on AD security
• Contributions to security communities
• Experience with healthcare/biotech compliance requirements
• AWS certifications

Project Success Metrics

• Zero domain-level administrative privileges for standard users
• All applications functional without elevated rights
• Automated monitoring and reporting implemented
• Complete audit trail of all changes
• Reproducible process for future deployments

Note: This POC environment is designed to validate approaches before potential enterprise deployment. The successful completion of this project may lead to extended engagement for production implementation and ongoing consultation.

To Apply: Send your materials to kunjal.pandya@newenglandinfotech.com/michael.moyer@newenglandinfotech.com with subject line "AD Modernization POC Specialist - [Your Name]"

Job Type: Full-time

Pay: Up to ₹1,800.00 per hour

Expected hours: 8 per week

Benefits:

• Flexible schedule
• Work from home

Work Location: Remote