Senior Systems Engineer

Company Overview:

CompliancyIT is a fast-growing IT Services, Security, and Compliance Company with primary operations out of Greensburg, PA. At CIT, we empower businesses with secure, compliant, and high-performing IT environments. Through strategic infrastructure services and compliance-focused support, we help our clients meet evolving regulatory requirements (CMMC, ISO 27001, NIST 800-171) while achieving their business objectives. As we grow and integrate newly acquired teams, we are committed to excellence, agility, and continuous improvement.

Our Massive Transformative Purpose is to create an environment where awesome people join to do meaningful work to grow personally and professionally and to believe in themselves. Our meaningful work is assessing, securing, maintaining, and configuring IT infrastructure, cloud platforms, servers, and computers. We use our guiding Principles to make decisions and determine what action to take. We are a tight knit team with high visibility and accountability. We specialize in providing CMMC Compliance services for businesses in the Defense Industrial Base.

Our 3 Non-Negotiables are: Security is Paramount, Detailed Documentation, Excellence in Communication.

And we align to our 5 company Principles:

• Trust in Radical Truth and Radical Transparency
• CIT is the Team and the Clients
• Get and Stay Aligned
• Learn, Test, Iterate.
• Manage the Organization Through Systems and Processes

We are scaling up - so if you thrive in a fast-moving environment where you work with high performers, read on...

Mission of the Position:

The mission of the Senior Systems Engineer is to design, implement, and safeguard resilient, secure, and compliant infrastructure across a complex portfolio of client environments, ensuring systems are built to withstand operational stress, security threats, and regulatory compliance scrutiny.

Senior Systems Engineers own the technical architecture and long-term stability of client environments including commercial M365, GCCH, on premises infrastructure, as well as virtual on premises networks. They translate business needs and compliance requirements into durable infrastructure designs, make high-impact technical decisions with discipline and foresight, and ensure changes strengthen — not erode — security, reliability, and maintainability. They work in collaboration with the rest of the Infrastructure Team to deliver the technical projects they design.

The Senior Systems Engineer is an active participant in weekly Project Sprint Planning Meetings, as well as Project Debrief Meetings. During New Project Planning Meetings, this Engineer brings forward any and all risks associated with the project, and develops contingency plans for those risks. They carve out time in their schedules to mentor junior technical staff for skill transfer.

Ability to communicate clearly and effectively both verbally and in writing is crucial to ensure clients have a thorough understanding of the solution, changes, and business interruption, and to ensure the team has a thorough understanding of the overarching design as well as how the solution will support client business operations, security, and compliance.

Operating at the intersection of engineering, security, and compliance, Senior Systems Engineers serve as final technical authorities for complex projects and incidents, mentor Service Delivery and Systems Engineers on the Infrastructure Teams and enforce standards that enable CompliancyIT to scale without sacrificing quality, trust, or defensibility.

Key Criteria/Requirements:

• 7-10 years of progressive experience in IT infrastructure, systems engineering, or senior technical roles
• U.S. Based, U.S. Citizen
• Experience in many different types of technical environments, heavily focused on Office 365, Windows servers and networking
• Demonstrated success designing, implementing, and maintaining secure, scalable, and compliant infrastructure in multi-tenant or MSP environments
• Proven experience owning end-to-end infrastructure projects, from design through implementation, validation, and handoff

Infrastructure & Servers

• Windows Server architecture (AD DS, DNS, DHCP, GPO, PKI)
• Server lifecycle management, patching, backups, and disaster recovery
• Ability to design and enforce secure baselines across environments
• Experience hardening systems against misconfiguration and attack

Microsoft 365 / GCCH / Azure / Entra Architecture

• Microsoft 365 Commercial and GCCH tenants at scale
• Entra ID (Azure AD) architecture, identity governance, and access controls
• Conditional Access, MFA, privileged access, and role design
• Experience implementing and tuning:
• Exchange Online, SharePoint, OneDrive
• Intune and device compliance baselines
• Ability to diagnose complex cross-identity and cross-service failures

Networking & Connectivity

• Network segmentation, routing, firewalls, and VPN design
• Secure remote access and site-to-site connectivity
• Ability to design for least privilege, fault isolation, and resilience
• Proven capability troubleshooting advanced connectivity and performance issues

Security & Compliance Integration

• Security-first mindset with ability to engineer controls, not just reference them
• Deep understanding of how infrastructure decisions affect:
• Confidentiality, integrity, availability
• Compliance with CMMC, NIST 800-171, ISO 27001
• Ability to identify systemic risk and remediate architecturally, not tactically
• Experience implementing and validating:

- Logging, monitoring, identity security, endpoint protection
- Backup, recovery, and incident response readiness

Architectural Judgment & Decision-Making

• Demonstrated ability to:

- Make high-impact decisions with incomplete information
- Balance security, operability, scalability, and cost
- Design systems that are defensible under audit and incident review
- Strong root-cause analysis skills focused on eliminating classes of failure
- Ability to say “no” when a request introduces unacceptable risk or technical debt

Documentation & Standards Ownership

• Exceptional documentation discipline:

- Architecture diagrams
- System standards and secure baselines
- Engineering runbooks and handoff documentation

• Ability to create documentation that is:

- Clear, enforceable, and repeatable
- Useful to Service Desk, Compliance, and Infrastructure Tams
- Ownership of technical standards enforcement, not just creation

Leadership, Mentorship & Cross-Team Influence

• Proven ability to:

- Mentor Level 3 Technicians and Engineers
- Guide Service Delivery and Compliance teams on technical implications
- Raise overall technical maturity across the organization

• Leads by example in:

- Calm execution during incidents
- Accountability for outcomes
- Professional, direct communication

Preferred / Strongly Valued

• Experience supporting regulated or defense-adjacent environments
• Prior involvement in:

- CMMC readiness, SPRS remediation, or audit preparation
- Incident response or security event recovery

• Relevant certifications (or equivalent demonstrated mastery):

- Microsoft (Azure, M365)
- Security or architecture certifications
- CCP or CCA

• Experience designing repeatable infrastructure patterns across clients

A Senior Systems Engineer is the person we trust to make the right call when failure is expensive, visibility is high, and there is no checklist.

If you're ready to join a dedicated and passionate team, contact us today. Please provide a cover letter and salary requirements. We look forward to meeting you!

Please provide your resume and a brief cover letter explaining why you think you'd be a good fit for the position and salary requirements. Join us in securing critical infrastructure locally and across the US!

Learn more about us at www.compliancyit.io. Take a look at our Principles at https://www.compliancyit.io/files/2024/01/COMPLIANCYIT_ThePrinciples.pdf If this sounds like you, we'd love to talk to you!

Job Type: Full-time

Pay: $100,000.00 - $135,000.00 per year

Benefits:

• 401(k) matching
• Dental insurance
• Flexible schedule
• Health insurance
• Paid time off
• Professional development assistance
• Vision insurance

Application Question(s):

• What kind of experience/knowledge do you have with CMMC/NIST 800-171?
• Are you a United States citizen?
• What experience do you have in an MSP/multi-client environment?

Work Location: Remote