With a company culture rooted in collaboration, expertise and innovation, we aim to promote progress and inspire our clients, employees, investors and communities to achieve their greatest potential. Our work is the catalyst that helps others achieve their goals. In short, We Enable Possibility℠. The Senior Systems Engineer (Team Lead) is responsible for the administration and operation of the firm’s Infrastructure. This role requires an in-depth knowledge of Active Directory, Azure, MFA, VMware ESX, Windows security, and related technologies. The candidate will be part of the Cloud & Compute Engineering group. Candidate must be a self-starter, and demonstrate experience managing projects to completion. Candidate must be self-motivated, well organized and must have strong communications skills. This position works very closely with the Cloud, Compute and Messaging Engineering Teams and Senior Systems Engineers of IT Operations. Job Functions: Candidate MUST have strong Power Shell scripting experience as well as operational responsibility over the Active Directory, DNS, DHCP and PKI services. Strong Azure Iaas PaaS and Office 365/Exchange Online experience. Install and maintain hardware and software on a virtualized Windows network. Develop processes and procedures to ensure managed environments maintain the highest levels of availability, security, and quality. Lead the security work stream of Active Directory consolidation program; Identify risks and provide guidance regarding remediation of gaps, to facilitate delivery of a hardened and sustainable AD environment. Deliver scripted solutions to assist with discovery and remediation of ad-hoc security gaps. Follow all set procedures and policies pertaining to the Change Management system. Develop capacity forecasts for managed environments that are proactive and prevent problems prior to outages. Manage "crisis situations" to a satisfactory conclusion (even under stress). Provide guidance on topics broadly related to information security risk and compliance. Serves as escalation point and provide troubleshooting guidance and direction in resolution of escalated issues and/or complex production, application or system problems. Candidate must be able to accommodate schedule flexibility to deal with escalations and occasional changes during non-core business hours. Required Skills A minimum of 5 years of relevant experience supporting a production environment. At least 3 to 5 years of relevant practical experience managing/troubleshooting authentication services. At least 5 plus years of strong Automation Experience.(PowerShell/Scripts/Terraform) At least 5 years of advanced level Active Directory experience. Knowledge of AKS, Kerberos, LDAP, Active Directory, DNS, DHCP. Experience with implementation of backup/restore and disaster and recovery strategies. Strong familiarity with security issues surrounding network computing and experience in implementation of security systems and controls. Strong knowledge of MFA, Enterprise Apps, IaaS and PaaS in MS Azure Expert knowledge of Active Directory, GPO's in a Windows Server 2019/2016 environment. Significant experience with Windows operating systems scripting and troubleshooting. Experience with user and security administration in the Windows environment. Extensive experience with maintenance and administration of VMWare virtualized systems. Knowledge of Microsoft Exchange, HP Proliant Servers, (Inc. iLO) are preferable. Knowledge of Microsoft Windows and Non-Windows Server architectures, Virtualization Technologies. Candidate must have a technologist mindset with aptitude to work on complex projects while possessing organization, time management, and multitasking skills. Candidates should have excellent written and oral communication skills with ability to cross-train team members. Strong ability to adapt to an extremely dynamic environment comprising of high degree of complexities and priorities. desirable Skills: Knowledge and experience of LAN/WAN/Firewall/VPN network technologies. Knowledge and experience of Citrix Virtual Apps and Desktop configuration and support in production environments. Knowledge and experience of Linux Knowledge and experience of Load Balancing technologies including configuration and support of production systems. Knowledge and experience of AWS Knowledge and experience of Cloud based security systems e.g. Tenable Nessus, Solarwinds, Mimecast, Crowdstrike Communication Skills: Excellent interpersonal and communication skills, including strong listening skills. Ability to effectively communicate business and technical information to audiences with varying backgrounds. Ability to communicate with offshore teams and technical development teams. Good documentation and presentation skills. Ability to interact with management in a professional manner. Leadership Skills: Ability to effectively plan, facilitate, and participate in meetings with employees from all organizational levels. Effectively use teamwork to contribute to a high-morale/high-performance team culture, leading by example. Demonstrate the ability to work in an open way, willingness to share knowledge and resources and to educate others within a global team. Effective team player and collaborator. Strong skills in prioritization and reprioritization to react to a dynamic environment as Arch continues to evolve. Results driven; Ability to work independently; Self-starter Experience of Team Lead roles Education and Training: Industry specific training or designation such as MCSA or equivalent Technical degree or certifications preferred but not required. Do you like solving complex business problems, working with talented colleagues and have an innovative mindset? Arch may be a great fit for you. If this job isn’t the right fit but you’re interested in working for Arch, create a job alert Simply create an account and opt in to receive emails when we have job openings that meet your criteria. Join our talent community to share your preferences directly with Arch’s Talent Acquisition team.