Jobs · Engineering · New York

Senior Systems Architect – Windows Infrastructure and Security

Saab, Inc. · Greater Syracuse-Auburn Area · 5 days ago
HybridEngineering$102k–$132k/yrFull-time

About the role

This position plays a key role in implementing and deploying air traffic control systems for customers, ensuring Windows environments are configured to support our software while meeting safety and security regulations. This role requires both an independent drive to troubleshoot implementation and the ability to work collaboratively with teammates to integrate various system components.

Key Responsibilities

  • Architecture Design: Develop, document, and maintain comprehensive security architectures, network designs, and cloud infrastructures

  • Risk & Vulnerability Management: Evaluate deliverable systems to identify weaknesses, perform security reviews, and execute ethical hacks or penetration tests.

  • Leadership & Guidance: Lead information technology analysts, security engineers, and deployment teams to coordinate effective security protocols and align projects with security guidelines

  • Design, implement, and manage Group Policy Objects (GPOs) to enforce security configurations and organizational standards within customer environments

  • Configure, administer, and harden Windows Server and Windows workstation systems as part of security solution deployments

  • Implement and maintain Active Directory security configurations, including user/group management, OU structures, and policy enforcement

  • Design and implement role-based access control (RBAC) and least-privilege access models

  • Deploy, configure, and manage endpoint protection and antivirus solutions

  • Apply system hardening practices aligned with industry security frameworks and best practices

  • Perform security assessments of Windows environments and implement remediation actions

  • Assist in creating secure configurations, patch processes, and compliance with security policies

  • Document system configurations, security controls, and deployment procedures for customer environments

  • Provide technical guidance and knowledge transfer to customer stakeholders when appropriate

Skills and Experience

  • Bachelor’s degree in Systems Engineering, Computer Science, Information Technology, Information Security, or a related field (or equivalent experience)

  • 6 - 8+ years of experience administering and securing Microsoft Windows environments

  • Strong hands-on experience with PowerShell scripting and automation

  • Proven experience creating and managing Windows domains, including development of Group Policy Objects and Active Directory structures

  • Experience integrating third-party software into Windows environments

  • Hands-on experience with Windows Deployment Services

  • Solid understanding of Windows security architecture and system hardening techniques

Preferred Qualifications

  • Experience with PXE boot and BIOS configuration

  • Experience implementing role-based access control and identity management practices

  • Experience performing security assessments and remediation

  • Familiarity with security monitoring tools and SIEM platforms

  • Knowledge of security frameworks such as NIST, CIS Benchmarks, or ISO 27001

  • Relevant certifications such as: CompTIA Security+, CISSP, Microsoft security or identity certifications, GIAC certifications

Desired Tool Experience

  • Experience with Microsoft Hyper-V Virtualization

  • Experience with Splunk

  • Experience with PDQ

  • Experience with RSA Authentication Manager

Citizenship Requirements

Must be a U.S. citizen.

Benefits

  • Medical, vision, and dental insurance for employees and dependents

  • Generous paid time off, including 8 designated holidays

  • 401(k) with employer contributions

  • Tuition assistance and student loan assistance

  • Wellness and employee assistance resources

  • Employee stock purchase opportunities

  • Short-term and long-term disability coverage

Similar jobs