Avik Ghosh
Kolkata
Summary
An accomplished IT professional with over 10+ years of experience in comprehensive skill set in Identity and Access Management, specializing in the administration of Active Directory and Microsoft Entra ID. Skilled in PowerShell scripting for task automation and adept in managing Microsoft 365 services and device & app management.
Overview
10
10
years of professional experience
1
1
Certification
Work History
Entra ID Administration
TCS
01.2019 - Current
- Privileged Identity Management (PIM): Implemented and managed PIM to enable Just-In-Time (JIT) access, monitor privileged role access reviews, and enforce risk mitigation measures across 20,000+ user accounts, ensuring robust identity governance.
- Lifecycle Management: Supported lifecycle processes for 20,000+ user accounts, including provisioning, deprovisioning, and continuous access monitoring.
- Role-Based and Attribute-Based Access Control: Deployed RBAC and ABAC frameworks to enforce least-privileged access across various organizational roles and systems.
- Zero Trust Security: Established Zero Trust Security models using MFA, conditional access policies, and Identity Protection alerts to safeguard organizational assets and minimize vulnerabilities.
- Identity Federation & Single Sign-On (SSO): Assisted 40+ app registrations leveraging SAML, OIDC, and SCIM protocols for seamless integration and secure authentication workflows.
- Microsoft Graph API: Configured and controlled API permissions and tokens for 20+ applications, supporting advanced automation and integration needs.
- Migration Projects: Successfully performed Azure Active Directory Sync server migrations, ensuring uninterrupted access and system stability during transitions.
- Access Certification Campaigns: Led audit remediation efforts and access certification campaigns to align with internal policies and regulatory standards such as ISO, NIST, HIPAA, and SOX.
- Security Integration Expertise: Worked on integrating identity management with tools such as Microsoft Defender for Identity and Sentinel for enhanced security and threat monitoring.
- PowerShell Automation: Leveraged PowerShell scripting for efficient identity management, access control workflows, and policy enforcement.
Active Directory Administration
TCS
01.2015 - Current
- User and Group Management: Oversaw 15,000+ users and 4,000+ groups.
- Group Policy Implementation: Designed and managed 300+ GPOs for enforced security settings and compliance.
- Domain Controller Management: Troubleshoot replication for 70 Domain Controllers across 16 sites.
- DNS Management: Managed both public (GoDaddy/Akamai Edge) and private DNS.
- PKI Management: Administered both enterprise CA service and Public CA (Global sign).
- Authentication : Managed LDAP and Kerberos authentication for application SSO login.
- DHCP Services: Maintain DHCP scopes,reservations and failovers.
- Incident Monitor: Response to any kind of security alerts from SIEM monitoring tool.
PowerShell Scripting
TCS
01.2016 - Current
- Reporting and Auditing for AD.
- Achieved seamless HR database integration with AD and Entra ID, impacting {8000+} employees, by streamlining identity management processes.
- User Onboarding Automation for HRMS.
- Email Automation through Graph API.
- Entra ID Application Sign-In Report Automation AD Health Monitoring.
- AD Privileged Group Alerts License Reconciliation Mailbox Utilization Alerts ITSM Integration.
Education
Bachelor's - Technology
Netaji Subhash Engineering College
01.2012
Skills
- Identity and Access Management (IAM)
- Entra ID
- SAML
- OpenID
- Oauth2
- SSO
- Active Directory
- DNS
- GPO
- Powershell
- Exchange
- Sharepoint
- Teams
- Intune
- MDM
- MAM
- Autopilot
- Service Now
- Monitoring and Troubleshooting
- Technical Documentation
- MS Graph
- Azure AD
- SCIM
Certification
- Microsoft 365 Certified: Enterprise Administrator Expert (MS-102)
- Microsoft Certified Solution Associate
Accomplishments
- Innovation award for pioneering the automation of the User Onboarding process. Saved man-hours by reliably integrating with HRMS system.
- Innovation Award for developing an integration between the ITSM tool and the certificate/client secret expiry alert system significantly improving security protocol adherence and IT infrastructure resilience.
- Innovation award for self-help portal for support engineers. Saved Man-hours by hosting a website portal for desktop support personnel for BitLocker keys, Laps password retrieval.
Timeline
Entra ID Administration
TCS
01.2019 - Current
PowerShell Scripting
TCS
01.2016 - Current
Active Directory Administration
TCS
01.2015 - Current
Bachelor's - Technology
Netaji Subhash Engineering College
Similar Profiles
Prathyusha ChivukulaPrathyusha Chivukula
IT Analyst - QA Lead at TCSIT Analyst - QA Lead at TCS
Avinash GawliAvinash Gawli
Scrum Master at TCSScrum Master at TCS
Krishna Kiran VelamakanniKrishna Kiran Velamakanni
Nutanix and VMWare Administrator at TCSNutanix and VMWare Administrator at TCS
ANUVAB PRAMANIKANUVAB PRAMANIK
Team Lead Business Analyst at TCSTeam Lead Business Analyst at TCS
Sourav MukherjeeSourav Mukherjee
Senior Cloud Tester at Koerber PharmaSenior Cloud Tester at Koerber Pharma