Wintel Servers + Active Directory (AD) System Analyst

We are seeking a skilled and detail-oriented System Analyst specializing in Wintel servers and Active Directory (AD) to join our IT infrastructure team. The ideal candidate will have hands-on experience with server configuration analysis, Windows OS hardening, and the implementation of Microsoft-recommended security baselines. You will play a critical role in improving our security posture, maintaining compliance standards, and collaborating across technical and business teams to support project execution.

Key Responsibilities:

• Perform comprehensive scanning of Wintel servers to identify and analyze configuration discrepancies across server groups.

• Apply Microsoft-recommended security configurations based on vulnerability and configuration scan reports.

• Ensure servers are compliant with Microsoft security baselines and internal Sands standards.

• Design, implement, and maintain Active Directory baseline Group Policy Objects (GPOs) in alignment with the least privilege model and AD tiering model.

• Implement and troubleshoot User Rights Assignments, Restricted Groups, and Windows Firewall rules.

• Conduct Windows OS hardening with minimal business impact, ensuring reliability and security.

Collaborate with:

• Microsoft Engineers for technical escalations and guidance.

• Enterprise Architects for design governance and validation.

• IT Operations Teams for integration and deployment support.

• Project Managers to coordinate activities with application owners and business stakeholders.

• Adhere to established change management processes and documentation standards.

Qualifications & Requirements:

• Strong knowledge of Microsoft Active Directory architecture including OU design, ACLs, and domain-level policy controls.

• Proven expertise in Group Policy management and security hardening methodologies.

Practical experience with:

• User Rights Assignments

• Restricted Groups

• Windows Defender Firewall policy settings

• Experience with server configuration analysis tools and data-driven discrepancy resolution.

• Deep understanding of Microsoft Enterprise Secure Access Model (AD Tiering Model) and Credential Guard.

• Familiarity with security frameworks such as CIS, NIST, or similar standards.

• Working knowledge of TCP/IP networking in Windows environments.

• Strong troubleshooting skills for Windows OS-level configuration and security issues.

• Ability to work collaboratively in cross-functional technical teams under a structured project management framework.

• Excellent communication and documentation skills.

EA Licence No.:18S9405 / EA Reg. No.:R1330864

Percept Solutions is expanding and actively seeking talented individuals. We encourage applicants to follow Percept Solutions on LinkedIn at https://www.linkedin.com/company/percept-solutions/ to stay informed about new opportunities and events.