Senior Systems Architect – Windows Infrastructure and Security
About the role
This position plays a key role in implementing and deploying air traffic control systems for customers, ensuring Windows environments are configured to support our software while meeting safety and security regulations. This role requires both an independent drive to troubleshoot implementation and the ability to work collaboratively with teammates to integrate various system components.
Key Responsibilities
Architecture Design: Develop, document, and maintain comprehensive security architectures, network designs, and cloud infrastructures
Risk & Vulnerability Management: Evaluate deliverable systems to identify weaknesses, perform security reviews, and execute ethical hacks or penetration tests.
Leadership & Guidance: Lead information technology analysts, security engineers, and deployment teams to coordinate effective security protocols and align projects with security guidelines
Design, implement, and manage Group Policy Objects (GPOs) to enforce security configurations and organizational standards within customer environments
Configure, administer, and harden Windows Server and Windows workstation systems as part of security solution deployments
Implement and maintain Active Directory security configurations, including user/group management, OU structures, and policy enforcement
Design and implement role-based access control (RBAC) and least-privilege access models
Deploy, configure, and manage endpoint protection and antivirus solutions
Apply system hardening practices aligned with industry security frameworks and best practices
Perform security assessments of Windows environments and implement remediation actions
Assist in creating secure configurations, patch processes, and compliance with security policies
Document system configurations, security controls, and deployment procedures for customer environments
Provide technical guidance and knowledge transfer to customer stakeholders when appropriate
Skills and Experience
Bachelor’s degree in Systems Engineering, Computer Science, Information Technology, Information Security, or a related field (or equivalent experience)
6 - 8+ years of experience administering and securing Microsoft Windows environments
Strong hands-on experience with PowerShell scripting and automation
Proven experience creating and managing Windows domains, including development of Group Policy Objects and Active Directory structures
Experience integrating third-party software into Windows environments
Hands-on experience with Windows Deployment Services
Solid understanding of Windows security architecture and system hardening techniques
Preferred Qualifications
Experience with PXE boot and BIOS configuration
Experience implementing role-based access control and identity management practices
Experience performing security assessments and remediation
Familiarity with security monitoring tools and SIEM platforms
Knowledge of security frameworks such as NIST, CIS Benchmarks, or ISO 27001
Relevant certifications such as: CompTIA Security+, CISSP, Microsoft security or identity certifications, GIAC certifications
Desired Tool Experience
Experience with Microsoft Hyper-V Virtualization
Experience with Splunk
Experience with PDQ
Experience with RSA Authentication Manager
Citizenship Requirements
Must be a U.S. citizen.
Benefits
Medical, vision, and dental insurance for employees and dependents
Generous paid time off, including 8 designated holidays
401(k) with employer contributions
Tuition assistance and student loan assistance
Wellness and employee assistance resources
Employee stock purchase opportunities
Short-term and long-term disability coverage