Microsoft Systems Engineer - Top Secret Clearance (SCI Eligible)

Description With more than twenty years of securing some of the U.S. Department of Defense and the Intelligence Community's most critical networks, JFL Consulting, LLC provides advanced network security solutions to a range of US Government and US commercial clients. Our cybersecurity operators are experts at assessing and defending mission-critical data and the networks that facilitate their operation. We are focused on delivering advanced products and industry best practices that meet each customer's unique requirements. Visit Job Description JFL Consulting, LLC is seeking a Microsoft Systems Engineer to support the engineering and sustainment of secure Windows-based infrastructure within high-security environments. This role focuses on the modernization and remediation of network systems that directly enable Department of Defense (DoD) and Department of Navy (DoN) operations. You'll work hands-on with critical systems designing, deploying, and maintaining resilient Windows environments across classified networks. Ideal for professionals who thrive in technical, mission-focused roles, this position offers the opportunity to contribute to national security objectives while collaborating with a team of experienced system, network, and cybersecurity engineers. Primary Place of Performance: Washington, DC Mandatory Requirements: U.S. Citizenship and TS/SCI Clearance Years of Experience: 6-10 years Responsibilities: Windows Infrastructure Engineering Design, deploy, and maintain Windows Server environments (2016/2019/2022) in accordance with DoD architecture and security standards. Engineer and manage Active Directory, Group Policy Objects (GPOs), DNS, DHCP, and certificate services in classified and unclassified networks. Cybersecurity & Compliance Implement and maintain systems in compliance with DoD STIGs, RMF, and IAVM requirements. Harden Windows systems and services to meet DISA security baselines and support Authority to Operate (ATO) processes. Support vulnerability scanning and remediation using tools like ACAS, Nessus, or SCAP Compliance Checker. Automation & Infrastructure as Code (IaC) Develop and maintain PowerShell scripts and use tools like Ansible, Terraform, or SCCM to automate provisioning, patching, and configuration. Support DevSecOps pipelines and infrastructure deployment in classified cloud or on-prem SDDC environments. Experience providing technical guidance in software engineering techniques and automated support tools. Experience with other programming languages . System Administration & Support Provide Tier 2/3 support for Windows-based systems, including virtual machines, domain controllers, and file servers. Perform patch management, system updates and upgrades, and performance tuning across production and test environments. Maintain system documentation, SOPs, and configuration baselines for audits and continuity. Virtualization & Cloud Integration Manage virtualized environments using VMware vSphere, Hyper-V, or Azure Stack. Support hybrid cloud deployments and integration with DoD cloud platforms (e.g., IL5/IL6 environments). Experience with Microsoft Azure, CloudFormation, Google Cloud and Amazon Web Services (AWS). Experience with cloud computing, including PaaS, IaaS and SaaS. High level understanding of technology areas such as Windows administration and VMware ESXI in addition to Windows 10 OS and Microsoft Office (2019 and 365). Collaboration & Mission Support Work closely with cybersecurity teams, network engineers, and mission owners to ensure secure, resilient, and mission-ready infrastructure. Participate in disaster recovery planning, continuity of operations (COOP), and classified enclave support. Requirements Education and Experience: Bachelor's or Master's degree preferred OR 6-10+ years of relevant experience. Security+, CASP+, or equivalent DoD 8570 IAT Level II/III certification as defined and described in DoDD 8570.01, 8570.01-M, and 8140.01-03, and as amended. MCSA, MCSE, or equivalent Windows Server certification. Familiarity with DoD IT environments, classified systems, and network segmentation. Skills and Qualifications: Design, deploy, and maintain Windows Server environments (2016/2019/2022) aligned with DoD architecture and security standards. Engineer and manage Active Directory, Group Policy Objects (GPOs), DNS, DHCP, and certificate services in classified and unclassified networks. Implement and maintain systems in compliance with DoD STIGs, RMF, and IAVM requirements. Harden Windows systems and services to meet DISA baselines and support ATO processes. Support vulnerability scanning and remediation using tools such as ACAS, Nessus, or SCAP Compliance Checker. Develop and maintain PowerShell scripts; experience with automation tools such as Ansible, Terraform, or SCCM. Support DevSecOps pipelines and infrastructure deployment in classified cloud or on-prem environments. Provide Tier 2/3 support for Windows-based systems, including domain controllers, virtual machines, and file servers. Conduct patching, system upgrades, and performance tuning across environments. Manage virtualized environments using VMware vSphere, Hyper-V, or Azure Stack. Support hybrid cloud deployments and DoD cloud platforms (e.g., IL5/IL6). Experience with cloud computing (PaaS, IaaS, SaaS) in Microsoft Azure, AWS, and Google Cloud. High-level understanding of Windows 10 OS, Microsoft Office (2019/365), and VMware ESXi. Collaborate with cybersecurity, network, and mission teams to ensure secure and resilient infrastructure. Participate in disaster recovery, COOP planning, and support for classified enclaves. Competitive benefits package includes: 100% employer-paid medical, dental, vision plan for each employee and dependents. 401(k) plan retirement plan with 3% company match and vesting from day one. Generous leave policy including 15 vacation days, 5 sick days, 2 personal days. Reimbursement for job-related certifications, generous training budget and company provided access to training platforms. JFL Consulting, LLC is an Equal Opportunity Employer. We do not discriminate against any applicant for employment on any legally recognized basis including, but not limited to: race, religion or creed, color, national origin, sex, age, disability, marital status, sexual orientation, genetic information, veteran status, status with regard to public assistance or any other protected class under federal, state or local statute. It is also the policy of JFL Consulting, LLC to provide reasonable accommodations for qualified individuals with disabilities. #J-18808-Ljbffr