Senior Windows/M365 Systems Engineer

NO H1S OR 3RD PARTIES.

THIS ROLE WILL BE ONSITE 5 DAYS PER WEEK IN NYC.

Fast-paced MSP has a long-term contract/likely contract-to-hire opportunity for a Senior Windows/M365 Systems Engineer.

ROLE DESCRIPTION
The Senior Systems Engineer is a senior-level technical consulting role responsible for 
architecting, implementing, securing, and supporting complex client environments. This role 
requires deep expertise across Microsoft 365, identity management, virtualization platforms, and 
enterprise infrastructure design within highly regulated industries.
The Senior Systems Engineer operates as a technical leader within our consulting 
organization. The role involves designing secure environments from the ground up, leading 
infrastructure migrations and modernization initiatives, troubleshooting complex issues across 
identity, networking, and virtualization layers, and serving as a technical escalation point for 
consulting staff.
This is a hands-on leadership role within a multi-client consulting environment requiring both 
strong technical depth and the ability to guide clients toward secure and well-architected solutions.
KEY RESPONSIBILITIES
Identity & Access Management
Design and implement Microsoft 365 tenant environments aligned with secure baseline 
standards
Configure and administer Microsoft Entra ID (Azure Active Directory)
Architect and implement Conditional Access policies and authentication controls
Design hybrid identity architectures including Password Hash Sync (PHS), Pass-through
Authentication (PTA), and federation models
Administer and secure on-premises Active Directory environments including OU 
structure and Group Policy
Design authentication and authorization models appropriate for regulated client 
environments
2
Email & Collaboration Security
Configure and troubleshoot email authentication protocols including SPF, DKIM, and 
DMARC
Design and maintain Exchange Online mail flow configurations
Implement secure sharing policies within SharePoint Online and OneDrive
Diagnose and resolve complex mail routing and delivery issues
Endpoint & Device Management
Configure and manage Microsoft Intune for endpoint and device management
Implement device compliance policies and application protection policies
Integrate device compliance with Conditional Access enforcement
Design secure access models for managed and unmanaged devices
Infrastructure & Virtualization
Design and support virtualization platforms such as VMware or equivalent enterprise 
solutions
Diagnose and resolve performance issues across compute, memory, storage, and 
networking layers
Implement high availability, redundancy, and resilience strategies for infrastructure 
environments
Support Windows Server environments including domain controllers, file services, and 
Remote Desktop Services
Backup & Disaster Recovery
Architect backup and recovery strategies using 3-2-1 protection principles
Implement immutable and offsite backup protections
Design and validate disaster recovery procedures
Lead recovery efforts during incident response situations
Networking & Systems Troubleshooting
Troubleshoot DNS, routing, firewall, and connectivity issues across client environments
Maintain strong understanding of Active Directory DNS architecture including SRV 
records
Support integration with email gateways and third-party filtering platforms
Diagnose multi-layer infrastructure issues affecting identity, networking, and application 
services
3
Project Leadership & Client Engagement
Lead Microsoft 365 migrations including hybrid and cutover implementations
Plan and execute tenant onboarding and infrastructure modernization initiatives
Serve as technical lead on client projects and consulting engagements
Develop documentation, architecture diagrams, and technical standards
Serve as a technical liaison between the company, client stakeholders, and third-party vendors
Team Collaboration & Mentorship
Serve as a technical escalation resource for Systems Engineers and consulting staff
Mentor junior engineers and support knowledge transfer across the team
Promote technical best practices and disciplined operational standards
Support the continued improvement of our consulting methodologies