Systems Engineer II
Sentinel Blue · Warrenton, VA · 4 mo ago
Information TechnologyFull-time
Responsibilities
- Own endpoint management across client environments (Intune compliance, baselines, configuration profiles, firewall rules, and remediation).
- Operate and manage hybrid identity systems, including Entra ID and on-premises Active Directory.
- Drive patching and lifecycle execution, including exception handling, remediation planning, and follow-through for endpoints and on-premise servers.
- Cook up local/cloud backup and recovery systems and processes, including restore validation and reliability improvements (Veeam exposure is a plus).
- Implement and validate systems changes across servers, virtualization, and core infrastructure fundamentals within approved standards.
- Run changes and projects end-to-end through Change Requests: plan the work, call out risk, execute cleanly, validate results, and document outcomes.
- Build and improve reusable automation (PowerShell, Graph, workflow tooling) and refine existing scripts and patterns with a focus on repeatability.
- Produce SOPs, runbooks, KBs, and diagrams on a regular basis, especially for recurring tasks and common failure modes.
- Participate in client calls as needed and communicate status, options, and next steps in plain language.
Qualifications
- 3-5 years of relevant engineering experience, including ownership of operational delivery across multiple systems.
- Hands-on experience with Intune, Entra, and Azure in production environments.
- Strong knowledge of on-premises Window infrastructure, including Active Directory, DNS, DHCP, and GPO management.
- Proven ability to troubleshoot complex issues, implement durable fixes, and validate outcomes.
- Clear written and verbal communication, including client-facing technical discussions.
- Proficiency in PowerShell and comfort improving or designing reusable automation.
- CompTIA Security+ required within 6 months of hire if not already held.
Desired Qualifications
- Experience working in Azure Government, Microsoft 365 GCC High, and other FedRAMP Moderate platforms.
- Practical familiarity with backup and restore validation practices, especially with Veeam.
- Proficiency with core networking fundamentals and practical exposure to platforms such as Fortinet, Meraki, Ubiquiti UniFi, and Cloudflare Zero Trust.
- Experience in a managed services or consulting environment with multiple client contexts and competing priorities.
- Familiarity with compliance-driven engineering expectations (CMMC, NIST 800-171, CIS Controls), including documentation, baselines, and disciplined change control.
- Bachelor’s or Master's degree in Cybersecurity, Information Systems, Computer Science, Business, or a related field.
Benefits
- Full health, vision, and dental insurance.
- Paid certification and training opportunities.
- Three weeks of paid vacation + 10 paid holidays.
- A supportive environment with a focus on keeping healthy work-life balance.
- Roth 401k with company match.