Profiles search
Majata Sembuche
Information Security Architect
Seattle, WA, United States
Details
Education:
B.Sc. Honours
Electrical and Electronics Engineering
University of Zimbabwe
1994 : 1999
Diploma
Business Management and Administration
Institute of Commercial Management
2000 : 2001
Electrical and Electronics Engineering
University of Zimbabwe
1994 : 1999
Diploma
Business Management and Administration
Institute of Commercial Management
2000 : 2001
Experience:
Information Security Architect at the world's largest aerospace company and leading manufacturer of commercial jetliners and defense, space and security systems. Architected, engineered and configured information security solutions for Active Directory, Azure AD, AWS, Group Policies, PowerShell, DNS, PKI, Kerberos and LDAP
2020 : Present
Boeing
Information Security Architect - Identity Management
Played a key role in the architectural design, engineering, documentation, configuration and support for most of the components of the Active Directory based Identity Management infrastructure for the world’s largest automotive seating manufacturer. An environment of 60000 users and 200 domain controllers spread across 5 continents :
• Designed, architected, engineered and supported a wide variety of Active Directory related components.
• Investigated and resolved issues identified by the Microsoft AD Risk Assessment Program (ADRAP).
• Designed and configured an IP Address Management (IPAM) solution based on Men and Mice.
• Designed, implemented and supported a brand new Hyper-V environment that was used to Host Adient’s Identity Management servers worldwide. Technologies hosted on this Hyper-V environment included ADCS/PKI, ADFS, ADLDS, AGPM, Centrify, KMS, Men and Mice, MIM, Quest Tools, SCCM, SCOM, SiteMinder, SQL, Symantec, WSUS.
• Designed, implemented and supported a brand new WSUS environment that was used for the patch management of Adient’s Identity Management servers.
• Designed, implemented and supported a brand new VMware ESXi 5.5/6.5 environment which was used to host all of Adient’s Windows Server 2012 domain controllers located at remote sites around the world.
• Configured and supported CA Single Sign-On (SiteMinder) federations and web agents.
2016 : 2019
Adient
Senior Identity and Access Management Architect/Engineer
As a member of the Identity Management Engineering Team at Johnson Controls, one of the world’s largest conglomerates having an environment of 160000 users and 400 Domain Controllers, I got involved in various projects related to Identity Management.
• Designed, implemented and configured a solution for Windows Server 2012 Read Only Domain Controllers to provide authentication services in the DMZ and secured their communications using IPsec.
• Configured Active Directory components such as ADLDS/LDAP, DNS, DHCP and Group Policy.
• Assisted with Activities arising from Mergers and Acquisitions (M&A) such as Domain Consolidations
• Analysed and identified systems that could be decommissioned from legacy domains that were still in the environment as part of an effort to eventually decommission the legacy domains.
2015 : 2015
Johnson Controls
Senior Active Directory Architect/Engineer
Re-architected and reconfigured the Active Directory Infrastructure for Whirlpool Corporation, the world’s largest home appliances manufacturer, an environment of 100000 users, 200 sites and 70 domain controllers in 30 countries and 5 continents :
• Led the re-architecting and implementation of improvements to Whirlpool’s Active Directory, Group Policy and Sites and Services Infrastructure.
• Re-designed, developed and coordinated the re-configuration of Active Directory Group Policies during Whirlpool’s migration from Windows XP to Windows 7.
• Designed and coordinated the migration of Whirlpool’s Active Directory Domain Controllers from Windows Server 2003/2008 to Windows Server 2012.
• Used monitoring tools such as Quest Spotlight on Active Directory to assist with analysing the health of Active Directory.
• Performed Active Directory Risk Assessments using the Microsoft ADRAP tools.
• Led troubleshooting efforts with network related problems and recommended appropriate mitigations.
• Analysed and defined requirements for migrating Whirlpool’s Visual Basic scripts to Group Policy Preferences as well as maintaining and improving the VBScripts that were not being migrated to Group Policy Preferences.
2013 : 2014
Whirlpool Corporation
IT Consultant/Active Directory Architect
Responsible for the successful planning, implementation, testing, documentation, deployment and maintenance of server applications for NHS Hertfordshire on its network of close to 10000 computers :
• Designed, developed and coordinated the Automation of Active Directory related tasks and operations using VBscript.
• Designed and implemented the consolidation of eight different Windows NT and Active Directory domains into a single Active Directory domain.
• Designed and implemented the migration of an email system initially from Exchange 5.5 to Exchange 2003 and subsequently to Exchange 2007.
• Designed and implemented solutions to virtualise a server farm of over 100 physical serves using VMware ESX Server including Site Recovery Manager (SRM) and the virtualisation of desktops using VMware View.
2008 : 2013
NHS
Server Development Manager
2020 : Present
Boeing
Information Security Architect - Identity Management
Played a key role in the architectural design, engineering, documentation, configuration and support for most of the components of the Active Directory based Identity Management infrastructure for the world’s largest automotive seating manufacturer. An environment of 60000 users and 200 domain controllers spread across 5 continents :
• Designed, architected, engineered and supported a wide variety of Active Directory related components.
• Investigated and resolved issues identified by the Microsoft AD Risk Assessment Program (ADRAP).
• Designed and configured an IP Address Management (IPAM) solution based on Men and Mice.
• Designed, implemented and supported a brand new Hyper-V environment that was used to Host Adient’s Identity Management servers worldwide. Technologies hosted on this Hyper-V environment included ADCS/PKI, ADFS, ADLDS, AGPM, Centrify, KMS, Men and Mice, MIM, Quest Tools, SCCM, SCOM, SiteMinder, SQL, Symantec, WSUS.
• Designed, implemented and supported a brand new WSUS environment that was used for the patch management of Adient’s Identity Management servers.
• Designed, implemented and supported a brand new VMware ESXi 5.5/6.5 environment which was used to host all of Adient’s Windows Server 2012 domain controllers located at remote sites around the world.
• Configured and supported CA Single Sign-On (SiteMinder) federations and web agents.
2016 : 2019
Adient
Senior Identity and Access Management Architect/Engineer
As a member of the Identity Management Engineering Team at Johnson Controls, one of the world’s largest conglomerates having an environment of 160000 users and 400 Domain Controllers, I got involved in various projects related to Identity Management.
• Designed, implemented and configured a solution for Windows Server 2012 Read Only Domain Controllers to provide authentication services in the DMZ and secured their communications using IPsec.
• Configured Active Directory components such as ADLDS/LDAP, DNS, DHCP and Group Policy.
• Assisted with Activities arising from Mergers and Acquisitions (M&A) such as Domain Consolidations
• Analysed and identified systems that could be decommissioned from legacy domains that were still in the environment as part of an effort to eventually decommission the legacy domains.
2015 : 2015
Johnson Controls
Senior Active Directory Architect/Engineer
Re-architected and reconfigured the Active Directory Infrastructure for Whirlpool Corporation, the world’s largest home appliances manufacturer, an environment of 100000 users, 200 sites and 70 domain controllers in 30 countries and 5 continents :
• Led the re-architecting and implementation of improvements to Whirlpool’s Active Directory, Group Policy and Sites and Services Infrastructure.
• Re-designed, developed and coordinated the re-configuration of Active Directory Group Policies during Whirlpool’s migration from Windows XP to Windows 7.
• Designed and coordinated the migration of Whirlpool’s Active Directory Domain Controllers from Windows Server 2003/2008 to Windows Server 2012.
• Used monitoring tools such as Quest Spotlight on Active Directory to assist with analysing the health of Active Directory.
• Performed Active Directory Risk Assessments using the Microsoft ADRAP tools.
• Led troubleshooting efforts with network related problems and recommended appropriate mitigations.
• Analysed and defined requirements for migrating Whirlpool’s Visual Basic scripts to Group Policy Preferences as well as maintaining and improving the VBScripts that were not being migrated to Group Policy Preferences.
2013 : 2014
Whirlpool Corporation
IT Consultant/Active Directory Architect
Responsible for the successful planning, implementation, testing, documentation, deployment and maintenance of server applications for NHS Hertfordshire on its network of close to 10000 computers :
• Designed, developed and coordinated the Automation of Active Directory related tasks and operations using VBscript.
• Designed and implemented the consolidation of eight different Windows NT and Active Directory domains into a single Active Directory domain.
• Designed and implemented the migration of an email system initially from Exchange 5.5 to Exchange 2003 and subsequently to Exchange 2007.
• Designed and implemented solutions to virtualise a server farm of over 100 physical serves using VMware ESX Server including Site Recovery Manager (SRM) and the virtualisation of desktops using VMware View.
2008 : 2013
NHS
Server Development Manager
Company:
Boeing
Years of Experience:
26
Skills
Active Directory, Cloud Computing, Customer Service, Exchange Server, Hyper-V, Integration, ITIL, PowerShell, VBScript, VMware ESXi, VMware View, Windows Server
About
Information Security Professional with extensive experience at Fortune 500 companies. Academic Credentials include a B.Sc. Honors Degree in Electrical Engineering and a Diploma in Business Management and Administration. Current and past certifications include CISSP, AWS SAA, MCSE, VCP6, CCNA, PRINCE2, TOGAF, ITILv3.
Profile Photo
