Senior Windows/M365 Systems Engineer

NO H1S OR 3RD PARTIES.

THIS ROLE WILL BE ONSITE 5 DAYS PER WEEK IN NYC.

Fast-paced MSP has a long-term contract/likely contract-to-hire opportunity for a Senior Windows/M365 Systems Engineer.

ROLE DESCRIPTION
The Senior Systems Engineer is a senior-level technical consulting role responsible for 
architecting, implementing, securing, and supporting complex client environments. This role 
requires deep expertise across Microsoft 365, identity management, virtualization platforms, and 
enterprise infrastructure design within highly regulated industries.
The Senior Systems Engineer operates as a technical leader within our consulting 
organization. The role involves designing secure environments from the ground up, leading 
infrastructure migrations and modernization initiatives, troubleshooting complex issues across 
identity, networking, and virtualization layers, and serving as a technical escalation point for 
consulting staff.
This is a hands-on leadership role within a multi-client consulting environment requiring both 
strong technical depth and the ability to guide clients toward secure and well-architected solutions.
KEY RESPONSIBILITIES
Identity & Access Management
 Design and implement Microsoft 365 tenant environments aligned with secure baseline 
standards
 Configure and administer Microsoft Entra ID (Azure Active Directory)
 Architect and implement Conditional Access policies and authentication controls
 Design hybrid identity architectures including Password Hash Sync (PHS), Pass-through
Authentication (PTA), and federation models
 Administer and secure on-premises Active Directory environments including OU 
structure and Group Policy
 Design authentication and authorization models appropriate for regulated client 
environments
2
Email & Collaboration Security
 Configure and troubleshoot email authentication protocols including SPF, DKIM, and 
DMARC
 Design and maintain Exchange Online mail flow configurations
 Implement secure sharing policies within SharePoint Online and OneDrive
 Diagnose and resolve complex mail routing and delivery issues
Endpoint & Device Management
 Configure and manage Microsoft Intune for endpoint and device management
 Implement device compliance policies and application protection policies
 Integrate device compliance with Conditional Access enforcement
 Design secure access models for managed and unmanaged devices
Infrastructure & Virtualization
 Design and support virtualization platforms such as VMware or equivalent enterprise 
solutions
 Diagnose and resolve performance issues across compute, memory, storage, and 
networking layers
 Implement high availability, redundancy, and resilience strategies for infrastructure 
environments
 Support Windows Server environments including domain controllers, file services, and 
Remote Desktop Services
Backup & Disaster Recovery
 Architect backup and recovery strategies using 3-2-1 protection principles
 Implement immutable and offsite backup protections
 Design and validate disaster recovery procedures
 Lead recovery efforts during incident response situations
Networking & Systems Troubleshooting
 Troubleshoot DNS, routing, firewall, and connectivity issues across client environments
 Maintain strong understanding of Active Directory DNS architecture including SRV 
records
 Support integration with email gateways and third-party filtering platforms
 Diagnose multi-layer infrastructure issues affecting identity, networking, and application 
services
3
Project Leadership & Client Engagement
 Lead Microsoft 365 migrations including hybrid and cutover implementations
 Plan and execute tenant onboarding and infrastructure modernization initiatives
 Serve as technical lead on client projects and consulting engagements
 Develop documentation, architecture diagrams, and technical standards
 Serve as a technical liaison between the company, client stakeholders, and third-party vendors
Team Collaboration & Mentorship
 Serve as a technical escalation resource for Systems Engineers and consulting staff
 Mentor junior engineers and support knowledge transfer across the team
 Promote technical best practices and disciplined operational standards
 Support the continued improvement of our consulting methodologies