Sr. Systems Engineer
Indexed description
This role is 100% onsite.
Specific duties include but are not limited to the following:
- Engineer and administer enterprise Windows Server environments (2016/2019/2022) within classified and DoD networks
- Architect, manage, and optimize Active Directory Domain Services (AD DS), including forests, domains, trust relationships, and replication topology
- Design and enforce Group Policy (GPO) strategy and configuration baselines across enterprise systems
- Implement and maintain Windows security hardening in accordance with DISA STIGs and DoD cybersecurity policies
- Serve as the technical lead for vulnerability assessment and remediation, leveraging ACAS scan results and system-level mitigation strategies
- Lead engineering efforts for system compliance, auditing, and continuous monitoring under RMF frameworks
- Develop advanced automation using PowerShell (primary) to support configuration enforcement, auditing, and remediation
- Support and optimize virtualized infrastructure (VMware vSphere/ESXi/vCenter) hosting Windows workloads
- Provide engineering support for Windows-based VDI environments, focusing on system performance, stability, and security
- Implement and manage identity, authentication, and access control mechanisms, including least privilege and privileged access strategies
- Troubleshoot and resolve complex Windows OS, AD, and infrastructure-level issues across lab and production environments
- Participate in architecture reviews, engineering boards, and configuration control processes
- Produce and maintain engineering documentation, including system designs, implementation plans, and compliance artifacts
- Mentor junior engineers and provide technical leadership within a multi-disciplinary team environment
Requirements
Clearance Level
TS/SCI (desired)
OR
An active SECRET clearance with a current SSBI/T5 investigation
AND
Candidates must be a U.S. citizen
Certifications (IAT Level II)
One Of The Following
- CompTIA CySA+
- CompTIA Security+
- CCNA - Security
- GICSP
- GSEC
- SSCP
- Operating System Certificate (e.g., Linux+, Windows Server, CCNA, etc.).
- Seven (7) years of experience in systems engineering and support for IT and C4I systems.
- bachelor’s or master’s degree desired in engineering (e.g., network, electrical, mechanical, systems, etc.).
- Advanced expertise in Active Directory architecture (multi-domain/forest design, replication, disaster recovery strategies)
- Deep understanding of Windows Server internals and enterprise infrastructure design
- Strong PowerShell development skills (modular scripting, automation frameworks, secure coding practices)
- Experience with hybrid identity solutions (Azure AD / Entra ID)
- Proven experience leading STIG implementation and compliance at scale
- Experience supporting classified DoD environments with privileged administrative access
- Familiarity with infrastructure-as-code concepts (desired, not required)
- Demonstrated ability to lead engineering efforts and influence architecture decisions
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search