Resident Engineer Job in 資訊科技及電子通訊 in 所有澳門特別行政區地區

Resident Engineer Job in 資訊科技及電子通訊 in 所有澳門特別行政區地區 - Job Description

職位內容

公司名稱: Winson Group (Macau) Limited
Winson Group Limited, originating from the real estate industry, has continually expanded its scope of operations, transforming into a diverse and integrated enterprise. The group's business ventures encompass a broad spectrum, including information technology services, corporate solutions, project management, catering, engineering, and entertainment.

Having deep roots in Macau, the group has witnessed simultaneous progress in its business development, while also extending its reach into mainland China. Moving forward, the group remains steadfast in actively integrating with the national market and exploring opportunities for growth in the Southeast Asian region. It eagerly looks forward to forging a path towards a prosperous future with even greater possibilities.

Resident Engineer

Responsibility：
• Execute server scans and analyze data to detect configuration inconsistencies among server groups.
• Implement Microsoft-approved security configurations on servers using scan report findings.
• Maintain adherence to Microsoft security baselines and organizational standards.
• Create and manage Active Directory baseline Group Policy Objects (GPOs), enforcing least privilege principles within AD tiering—covering User Rights Assignments, Restricted Groups, and Windows Firewall rules.
• Harden Windows OS configurations, diagnose and resolve configuration-related problems, and minimize disruption to business functions.
• Work closely with:
o Microsoft engineers to obtain technical support and resolve issues;
o Enterprise architects to validate and govern design standards;
o IT operations teams to facilitate seamless deployment and integration;
o Project Managers, who will interface with application owners and business stakeholders to schedule tasks.
• Follow defined change management protocols, ensuring all configuration modifications are properly documented, tested, authorized, and deployed under controlled conditions.
• Deliver precise documentation covering changes, configuration baselines, exceptions, and rollback plans.
Qualifications:
• Proficient in Microsoft Active Directory, including organizational unit (OU) design, access management, and domain policy administration.
• Advanced skills in Group Policy management and OS security hardening methods.
• Hands-on experience deploying Windows OS security measures such as User Rights Assignments, Restricted Groups, and Firewall configurations.
• Knowledge of native Windows security groups, permission structures, and local policy settings.
• Competency in performing data analysis and configuration comparisons across server environments.
• Familiarity with Microsoft’s Enterprise Secure Access Model (AD Tiering).
• Practical experience with Credential Guard.
• Exposure to industry security frameworks such as CIS and NIST.
• Understanding of TCP/IP networking within Windows-based systems.
• Demonstrated ability to troubleshoot OS-level security and configuration problems.
• Strong collaborative skills, with experience working across technical teams and within project-driven frameworks.

Interested candidates please kindly send CV, copy of identity card, photo and relevant certificates to hr@winson-group.com.
* The personal data collected will be kept confidential for recruitment purposes only