Sr. Systems Engineer.

About The Position

Requirements

• 7+ years of experience in systems administration and security engineering
• Strong expertise with Microsoft 365, Exchange Online, SharePoint, OneDrive, and Teams
• Hands-on experience with Microsoft Government Cloud (GCC or GCC High)
• Advanced knowledge of Active Directory, hybrid identity, and access management
• Experience managing hypervisors (VMware and/or Hyper-V)
• Proficiency with Fortinet firewalls, VPNs, and enterprise networking
• Experience with PKI, certificate servers, and encryption technologies
• Strong background in backup and disaster recovery solutions (Rubrik preferred)
• Demonstrated experience supporting CMMC Level 2 and ITAR-regulated environments
• Solid understanding of NIST 800-171 and defense industry cybersecurity requirements
• Must be eligible to work with ITAR-controlled data
• Ability to work on-site in Vergennes, VT full time
• Strong communication, documentation, and problem-solving skills

Nice To Haves

• Security certifications (Security+, or equivalent)
• Microsoft certifications (Azure, M365, Security)
• Experience in aerospace & defense manufacturing or regulated industrial environments
• Familiarity with data loss prevention (DLP) and zero-trust architectures

Responsibilities

• Administer and secure Microsoft 365 Government Cloud (GCC/GCC High) environments
• Manage Exchange Online, SharePoint Online, OneDrive, and Microsoft Teams
• Oversee Active Directory (on-prem and hybrid), including identity lifecycle management, GPOs, and access controls
• Design and maintain hybrid infrastructure, including Hypervisor platforms (VMware/Hyper-V)
• Monitor system performance, availability, and capacity planning
• Implement and maintain security controls aligned with CMMC Level 2, NIST 800-171, and ITAR requirements
• Design, manage, and secure PKI infrastructure, including Certificate Authorities and Certificate Servers
• Enforce data encryption standards for ITAR-controlled data at rest and in transit
• Support secure data transfer mechanisms for regulated environments
• Lead vulnerability management, security hardening, and audit readiness efforts
• Configure, manage, and monitor Fortinet firewalls, VPNs, and network security appliances
• Administer VPN access for remote users and third-party partners
• Implement network segmentation and zero-trust principles where applicable
• Troubleshoot complex network and security incidents
• Manage enterprise backup and recovery solutions (including Rubrik or similar platforms)
• Perform and validate disaster recovery testing and documentation
• Ensure data integrity, retention, and compliance with regulatory requirements
• Maintain detailed system documentation, policies, procedures, and security artifacts
• Collaborate with engineering, manufacturing, quality, and compliance teams
• Support internal and external audits related to cybersecurity and regulatory compliance
• Mentor junior IT staff and contribute to continuous improvement initiatives