Systems Engineer / Windows / Onsite

This is a high-impact, hands-on role ideal for a senior-level engineer who thrives in autonomy, takes initiative, and enjoys both backend systems work and end-user interaction. The position offers significant ownership across identity, endpoint management, and cloud infrastructure while partnering closely with a Managed Service Provider. Candidates will gain exposure to modern security frameworks (Zero Trust, conditional access, MFA) and play a key role in shaping IT operations during an ongoing transition to cloud-first tools like SharePoint and Windows Cloud PCs. Required Skills & Experience, * 40% Microsoft 365 / Identity & Access Management (Entra ID, Intune, Exchange, Teams)

• 25% Endpoint & Device Management (Intune, Autopilot, security policies)
• 15% Network & Security Infrastructure (firewalls, ZTNA, SWG)
• 10% AWS Cloud / Server Operations
• 10% IT Operations, Documentation, and Vendor (MSP) Management

Daily Responsibilities

• 30% Systems engineering and infrastructure improvements
• 25% Identity, access, and security administration
• 20% End user support (devices, access issues, executive support)
• 15% Collaboration with MSP and vendor oversight
• 10% Documentation, governance, and IT operations support

• 5-8 years of experience in systems engineering or IT infrastructure roles
• Strong hands-on expertise with Microsoft 365 (E5), Entra ID / Azure AD, and tenant administration
• Deep understanding of Active Directory, DNS, and DHCP
• Experience managing Intune (MDM/MAM) across Windows, macOS, iOS, and Android devices
• Proven ability to support authentication systems, conditional access, and MFA/FIDO2 security policies
• Experience with network infrastructure including switches, firewalls, and wireless environments
• Familiarity with secure web gateway (SWG) and Zero Trust Network Access (ZTNA) solutions
• Scripting proficiency in PowerShell, Python, or Bash
• Experience working with or overseeing a Managed Service Provider (MSP)
• Strong troubleshooting skills and ability to independently resolve complex technical issues
• Excellent communication skills, with ability to interact with executives and end users

Desired Skills & Experience

• Experience with AWS or Azure cloud infrastructure operations
• Familiarity with Windows 365 / Cloud PCs and virtual desktop environments
• Knowledge of Defender for Endpoint and Defender for Cloud Apps
• Exposure to VoIP, SIP, Teams Voice, or Direct Routing configurations
• Experience with CI/CD pipelines and GitHub administration
• Familiarity with Infrastructure as Code (Terraform, Bicep, etc.)
• Experience in regulated environments such as financial services or SOX-compliant organizations
• Microsoft certifications (MS-102, SC-300, AZ-104, MD-102) or equivalent

The Offer

• Comprehensive health, dental, and vision benefits
• Retirement plan options
• Generous PTO and paid holidays
• High-impact role in a lean, high-performing IT team
• Opportunity to work closely with senior stakeholders and influence IT strategy
• Exposure to modern cloud and security technologies in a rapidly evolving environment

This employer is seeking a Systems Engineer to join its IT Infrastructure team in Midtown Manhattan (4 days onsite) in a full-time capacity reporting to senior technology leadership. The organization is a leading publicly traded investment firm, operating a lean, high-performing environment where technology plays a critical role in enabling business operations. The environment is a full Microsoft ecosystem (M365 E5, Entra ID, Intune, Autopilot) with additional infrastructure spanning AWS-hosted servers and web applications.