Sr. Systems Engineer/Architect

Description

The Systems Engineer / Architect will be responsible for the functional and technical design of solutions within the DTR A ITD I3TS portfolio, including leading the technical design of solution components and developing system and technical requirements in support of customer-facing capabilities in a Data-Driven, AI ready, hybrid cloud-based environment in Fort Belvoir, VA. As a I3TS team member, you will work as part of a fast paced, Agile team to create solution designs as well as develop and manage requirements across multiple DTRA ITD modernization and integration efforts . The ideal candidate will have extensive experience in multi-cloud environments specifically working with GovCloud providers Microsoft Azure and AWS , infrastructure modernization, automation, with expertise spanning on-premise cloud extensions , Azure Local, Kubernetes, VMware, and Microsoft Entra I D. The candidate will be experienced using DevSecOps tools to drive continual improvements .

Specific tasks include developing and designing innovative technical solutions to improve the reliability, security, performance, and agility of the systems , including deriving and authoring functional, technical, performance, security, and availability requirements, in a continuous innovation process that leverages feedback derived from measuring deployed capabilities against key metrics to demonstrate success.

The Systems Engineer / Architect will be responsible for working with a team to ensure successful completion of testing and verification of new capabilities prior to deployment. To accomplish these goals, the successful candidate will demonstrate strong deductive reasoning, attention to detail, persistence, patience, and creativity.

Primary Responsibilities:

• Administer, maintain, and optimize Windows Server 2019 and 2022 domain controllers across a global infrastructure.

• Design, implement, and manage Active Directory forests, domains, trusts, and organizational units (OUs).

• Develop and enforce Group Policy Objects (GPOs) for security, configuration management, and compliance.

• Create and maintain PowerShell scripts to automate administrative tasks and reporting.

• Perform AD health checks, replication monitoring, and troubleshooting of domain-related issues.

• Support integration with identity services (e.g., Azure AD, ADFS, LDAP) as required.

• Manage DNS, DHCP, and certificate services within the Windows domain environment.

• Collaborate with cybersecurity teams to apply STIGs, hardening policies, and ensure compliance with government security standards.

• Provide technical guidance and mentoring to junior administrators.

• Participate in on-call rotations and respond to critical incidents as needed.

Basic Qualifications:

• Bachelors with 8-12 years of prior relevant experience or Master's with 6-10 years of prior relevant experience. Specific experience, education and training may be considered in lieu of degree.

• Security+ CE certification or equivalent DoD 8570 IAT II certification within 30 days of start date.

• Currently possess an active DoD Top Secret security clearance or higher.

• 7+ years of experience administering Windows domains in large enterprise or government environments.

• Expertise in Active Directory design, administration, and troubleshooting in multi-site architectures.

• Strong experience with Group Policy creation, management, and troubleshooting.

• Advanced proficiency in PowerShell scripting for automation and task orchestration.

• Hands-on experience with Windows Server 2019 and 2022.

• In-depth knowledge of DNS, DHCP, DFS, and PKI in Windows environments.

• Familiarity with security compliance frameworks (e.g., DISA STIGs, CIS benchmarks).

• Excellent problem-solving and documentation skills.

Preferred Qualifications:

• Experience integrating on-prem AD with Azure Active Directory / hybrid identity solutions.

• Familiarity with ADFS, LDAP-based applications, or other federation technologies.

• Microsoft certifications such as Microsoft Certified: Windows Server Hybrid Administrator Associate, MCSA, or MCSE.

• Prior experience in a federal or DoD environment.

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.