Active Directory Security Engineer

Lead critical AD security remediation for a major enterprise engagement!

FinXL Professional Services is a leading IT consultancy that partners with clients to bridge the gap between business needs and technology capabilities. Since 2003, we've been delivering high-value ICT services across government, finance, telecommunications, and enterprise sectors.

FinXL is seeking an Active Directory Security Engineer to join our consulting team and be deployed with a leading enterprise clent on a key security remediation project.

Responsibilities

• Remediate critical and high-risk findings from AD Security Assessments.

• Implement hardening and privilege reduction across AD and Windows endpoints.

• Remove excessive permissions at domain and OU levels.

• Secure and rotate built-in Administrator and KRBTGT accounts.

• Enforce tiered admin models and privileged account isolation.

• Review service accounts and migrate to gMSA where possible.

• Harden GPOs, User Rights Assignments, and LAPS coverage.

Key Skills & Experience

• Extensive hands-on experience securing Active Directory.

• Proven background in APRA regulated environments.

• Deep knowledge of GPO, ADCS, Kerberos, and authentication hardening.

• Experience remediating findings from third-party security assessments.

• Ability to implement Credential Guard and UAC hardening.

• Skilled in restricting local account lateral movement and WinRM exposure.

• Ability to work independently and safely in production environments.

Why Join FinXL?

• Lead critical AD security remediation for a major enterprise engagement.

• High-impact role implementing hardening across AD, GPOS, ADCS, and Kerberos.

Next Steps If you would like to apply for this opportunity, please submit your CV via SEEK.

Please note that due to the volume of responses, only shortlisted consultants will be contacted.