NTT DATA North AmericaRemote
Active Directory Engineer for EPIC - Remote
United States of America
Full Time
8 hours ago
H1B Sponsor Likely
Key skills
LDAPActive DirectorySSOSingle Sign-On
About this role
NTT DATA North America is a leading business and technology services provider, seeking an Active Directory Engineer to support Epic infrastructure. The role involves managing Active Directory structures, implementing access controls, and ensuring seamless integration of Epic systems while maintaining security and compliance standards.
Responsibilities:
- Design and manage Active Directory structures (OUs, groups, service accounts) specific to Epic
- Implement and maintain role-based access control (RBAC) for Epic Hyperspace, Cogito tools, and other integrated apps
- Support single sign-on (SSO) and Kerberos authentication for Epic Hyperspace, especially in Citrix/VDI environments
- Create and manage Group Policy Objects (GPOs) to configure Epic workstations, terminal servers, and virtual desktops
- Ensure Epic clients have the proper settings for performance, security, and compatibility (e.g., printer redirection, timeouts, ActiveX settings)
- Deploy and manage login scripts, mapped drives, and environment variables tied to Epic workflows
- Support domain joining and integration of Epic servers and clients (including Interconnect, Hyperspace, and ancillary apps)
- Ensure trusts, DNS, LDAP, and certificate services function correctly for cross-domain or multi-forest Epic implementations
- Coordinate with Epic TS and internal teams to troubleshoot directory-related issues during upgrades or system refreshes
- Maintain audit-ready access controls and logging in accordance with HIPAA, HITRUST, and internal IT security policies
- Regularly review and update privileged account access, group memberships, and service account usage
- Implement and monitor multi-factor authentication (MFA) and conditional access policies as required for Epic access
Requirements:
- Design and manage Active Directory structures (OUs, groups, service accounts) specific to Epic
- Implement and maintain role-based access control (RBAC) for Epic Hyperspace, Cogito tools, and other integrated apps
- Support single sign-on (SSO) and Kerberos authentication for Epic Hyperspace, especially in Citrix/VDI environments
- Create and manage Group Policy Objects (GPOs) to configure Epic workstations, terminal servers, and virtual desktops
- Ensure Epic clients have the proper settings for performance, security, and compatibility (e.g., printer redirection, timeouts, ActiveX settings)
- Deploy and manage login scripts, mapped drives, and environment variables tied to Epic workflows
- Support domain joining and integration of Epic servers and clients (including Interconnect, Hyperspace, and ancillary apps)
- Ensure trusts, DNS, LDAP, and certificate services function correctly for cross-domain or multi-forest Epic implementations
- Coordinate with Epic TS and internal teams to troubleshoot directory-related issues during upgrades or system refreshes
- Maintain audit-ready access controls and logging in accordance with HIPAA, HITRUST, and internal IT security policies
- Regularly review and update privileged account access, group memberships, and service account usage
- Implement and monitor multi-factor authentication (MFA) and conditional access policies as required for Epic access