Sr. Windows Systems Engineer

Geologics•Bedford, MA

16h•Hybrid

About The Position

Design and implement advanced Windows Server solutions, including clustering, high availability, and performance optimization. Architect and maintain Active Directory environments, including domain design, GPO strategy, identity lifecycle, and security hardening. Lead engineering efforts for Nutanix hyperconverged infrastructure, including cluster design, capacity planning, and performance tuning. Own the architecture and operational excellence of Rubrik backup and recovery platforms, ensuring enterprise‑grade data protection and DR readiness. Serve as a subject matter expert for Okta, driving SSO integrations, MFA strategy, and identity governance initiatives. Oversee the health, performance, and security of Windows and virtualized systems across the enterprise. Lead root‑cause analysis for complex infrastructure issues and drive long‑term remediation. Develop and maintain detailed documentation, runbooks, and architectural diagrams. Implement and enforce security baselines, patching strategies, and hardening standards across Windows and identity platforms. Partner with security teams to support audits, vulnerability remediation, and compliance frameworks (SOC, ISO, NIST, etc.). Develop automation using PowerShell and other tools to streamline operations, reduce manual effort, and improve consistency. Contribute to cloud‑readiness initiatives, hybrid identity, and infrastructure‑as‑code adoption. Evaluate emerging technologies and make recommendations that align with business and security goals. Provide technical leadership and mentorship to junior and mid‑level engineers. Collaborate with cross‑functional teams including networking, security, DevOps, and application teams. Communicate complex technical concepts to both technical and non-technical stakeholders. This is a HYBRID need, candidates must be local and able to visit the Bedford Facility 2 days per week.

Requirements

7–10+ years of experience in Windows systems engineering or enterprise infrastructure roles.
Expert‑level proficiency with: Windows Server (2016/2019/2022)
Active Directory, GPO, DNS, DHCP
Nutanix (AHV, Prism, cluster operations)
Rubrik backup and recovery solutions
Okta administration (SSO, MFA, lifecycle automation)
Strong PowerShell scripting and automation capabilities.
Solid understanding of virtualization, networking, storage, and security fundamentals.
Bachelor's degree in Computer Science, Information Technology, Computer Engineering, or a related technical discipline.

Responsibilities

Design and implement advanced Windows Server solutions, including clustering, high availability, and performance optimization.
Architect and maintain Active Directory environments, including domain design, GPO strategy, identity lifecycle, and security hardening.
Lead engineering efforts for Nutanix hyperconverged infrastructure, including cluster design, capacity planning, and performance tuning.
Own the architecture and operational excellence of Rubrik backup and recovery platforms, ensuring enterprise‑grade data protection and DR readiness.
Serve as a subject matter expert for Okta, driving SSO integrations, MFA strategy, and identity governance initiatives.
Oversee the health, performance, and security of Windows and virtualized systems across the enterprise.
Lead root‑cause analysis for complex infrastructure issues and drive long‑term remediation.
Develop and maintain detailed documentation, runbooks, and architectural diagrams.
Implement and enforce security baselines, patching strategies, and hardening standards across Windows and identity platforms.
Partner with security teams to support audits, vulnerability remediation, and compliance frameworks (SOC, ISO, NIST, etc.).
Develop automation using PowerShell and other tools to streamline operations, reduce manual effort, and improve consistency.
Contribute to cloud‑readiness initiatives, hybrid identity, and infrastructure‑as‑code adoption.
Evaluate emerging technologies and make recommendations that align with business and security goals.
Provide technical leadership and mentorship to junior and mid‑level engineers.
Collaborate with cross‑functional teams including networking, security, DevOps, and application teams.
Communicate complex technical concepts to both technical and non-technical stakeholders.