Job Description
Job Description
NO H1S OR 3RD PARTIES.
THIS ROLE WILL BE ONSITE 5 DAYS PER WEEK IN NYC
ROLE DESCRIPTION The Senior Systems Engineer is a senior-level technical consulting role responsible for architecting, implementing, securing, and supporting complex client environments. This role requires deep expertise across Microsoft 365, identity management, virtualization platforms, and enterprise infrastructure design within highly regulated industries. The Senior Systems Engineer operates as a technical leader within our consulting organization. The role involves designing secure environments from the ground up, leading infrastructure migrations and modernization initiatives, troubleshooting complex issues across identity, networking, and virtualization layers, and serving as a technical escalation point for consulting staff. This is a hands-on leadership role within a multi-client consulting environment requiring both strong technical depth and the ability to guide clients toward secure and well-architected solutions.
KEY RESPONSIBILITIES
Identity & Access Management
· Design and implement Microsoft 365 tenant environments aligned with secure baseline standards · Configure and administer Microsoft Entra ID (Azure Active Directory)
· Architect and implement Conditional Access policies and authentication controls
· Design hybrid identity architectures including Password Hash Sync (PHS), Pass-through Authentication (PTA), and federation models
· Administer and secure on-premises Active Directory environments including OU structure and Group Policy · Design authentication and authorization models appropriate for regulated client environments
Email & Collaboration Security
· Configure and troubleshoot email authentication protocols including SPF, DKIM, and DMARC
· Design and maintain Exchange Online mail flow configurations · Implement secure sharing policies within SharePoint Online and OneDrive
· Diagnose and resolve complex mail routing and delivery issues Endpoint & Device Management
· Configure and manage Microsoft Intune for endpoint and device management · Implement device compliance policies and application protection policies
· Integrate device compliance with Conditional Access enforcement
· Design secure access models for managed and unmanaged devices
Infrastructure & Virtualization
· Design and support virtualization platforms such as VMware or equivalent enterprise solutions
· Diagnose and resolve performance issues across compute, memory, storage, and networking layers
· Implement high availability, redundancy, and resilience strategies for infrastructure environments · Support Windows Server environments including domain controllers, file services, and Remote Desktop Services Backup & Disaster Recovery
· Architect backup and recovery strategies using 3-2-1 protection principles
· Implement immutable and offsite backup protections
· Design and validate disaster recovery procedures
· Lead recovery efforts during incident response situations Networking & Systems Troubleshooting · Troubleshoot DNS, routing, firewall, and connectivity issues across client environments
· Maintain strong understanding of Active Directory DNS architecture including SRV records
· Support integration with email gateways and third-party filtering platforms
· Diagnose multi-layer infrastructure issues affecting identity, networking, and application services 2 Project Leadership & Client Engagement
· Lead Microsoft 365 migrations including hybrid and cutover implementations
· Plan and execute tenant onboarding and infrastructure modernization initiatives
· Serve as technical lead on client projects and consulting engagements
· Develop documentation, architecture diagrams, and technical standards
· Serve as a technical liaison between the company, client stakeholders, and third-party vendors Team Collaboration & Mentorship
· Serve as a technical escalation resource for Systems Engineers and consulting staff
· Mentor junior engineers and support knowledge transfer across the team
· Promote technical best practices and disciplined operational standards · Support the continued improvement of our consulting methodologies