Infrastructure Engineer (Lead)-Windows

Position Title: Infrastructure Engineer (Lead) - Windows

Clearance: Not required

Location: Huntsville, AL

Salary: $90,000 and up (dependent upon qualifications)

At Summit 7, we rise above the ordinary. Our mission extends beyond day-to-day operations-we protect the U.S. defense industrial base from cyber threats, cultivate thought leadership, and create meaningful growth opportunities. Every team member, from support staff to engineers, plays a critical role in that mission.

We also recognize that life exists beyond work. That's why we invest in benefits that matter:

• Comprehensive health and dental coverage (BCBS/Ameritas)
• Premium vision benefits (VSP)
• 401k with company match
• 10 vacation days + 7 sick days
• Certification-based bonuses and salary growth opportunities
  
  

Role Overview

We are seeking an experienced Infrastructure Engineer (Lead)-Windows to design, implement, and maintain the Windows server ecosystems that power our secure, high-performance environments. This role is essential for ensuring reliability, scalability, and security across on-premises, hybrid Windows platforms, and Azure Platforms. You will collaborate closely with engineering teams, provide deep expertise in Windows infrastructure, and drive best practices across identity, endpoint management, patching, automation, and monitoring.

Duties & Responsibilities

• Architect, deploy, and maintain Windows infrastructure across multiple clients-including Windows Server (2016/2019/2022/2025), Active Directory/Entra ID, and Windows 10/11 endpoints.
• Lead identity, directory, and policy management: design and administer AD DS, Group Policy, OU structure, DNS/DHCP, and hybrid identity (Entra Connect), including Conditional Access and MFA where applicable.
• Own endpoint management at scale: implement and optimize Intune/Microsoft Endpoint Manager and/or MECM/SCCM for device enrollment, configuration baselines, software distribution, compliance policies, and Autopilot/MDT imaging.
• Patching & update governance: establish and enforce patching strategies via Windows Update for Business, WSUS, Intune, or MECM; ensure timely remediation and reporting.
• Security hardening: apply and document Windows security baselines (e.g., CIS, DISA STIG), BitLocker, Defender for Endpoint, Defender for Identity, and LAPS; integrate with SIEM (e.g., Microsoft Sentinel) as needed.
• Automation & scripting: develop reliable PowerShell tooling for configuration, health checks, remediation tasks, and repeatable deployments; maintain source control and documentation.
• Integrate Windows platforms with virtualization, backup, and monitoring: support VMware/HyperV, Veeam/Azure Backup, and monitoring stacks (SCOM/Azure Monitor) to ensure availability and performance.
• Troubleshoot complex issues: lead deep dive diagnostics across authentication, policy application, performance bottlenecks, networking, and OSlevel failures; drive root-cause analysis and prevention.
• Standards & governance: create, document, and enforce Windows platform standards, gold images, baseline configurations, and operational runbooks.
• Project leadership: plan, lead, and deliver Windows infrastructure initiatives (migrations, upgrades, hardening programs) aligned to organizational goals, scope, and timelines.
• Team leadership: mentor engineers; supervise the Windows Infrastructure team's workload and quality, ensuring consistent, timely delivery of builds, configurations, and endpoint repairs.
• Other duties as assigned.
  
  

Required Qualifications

• 5+ years of hands-on Windows infrastructure engineering (ideally within a Managed Service Provider or multitenant environment).
• Security+ certification (required).
• Strong proficiency with Windows Server, Active Directory, Group Policy, DNS/DHCP, and file/print services.
• Experience managing Windows 10/11 endpoints via Intune/MEM and/or MECM/SCCM, including Autopilot/MDT imaging, compliance, and application packaging.
• Demonstrated expertise in patch management, PowerShell scripting, and systems integration (identity, networking, virtualization, backup, monitoring).
• Proven ability to troubleshoot complex Windows platform issues and lead cross-functional resolution efforts.
  
  

Desired Qualifications

• Experience with virtualization platforms (e.g., VMware, HyperV) and Windows-centric VDI/RDS solutions (e.g., Azure Virtual Desktop, FSLogix, Horizon/Citrix).
• Familiarity with hybrid/cloud-connected Windows environments (Azure/Entra ID, Conditional Access, Defender suite, Microsoft Sentinel).
• Knowledge of NIST 800171 and/or NIST 80053 and implementation of Windows controls and monitoring in compliance-driven environments.
• Microsoft certifications (e.g., AZ104, MS102, SC300, SC200, MD102) or equivalent infrastructure credentials.
• Experience supporting secure or GCC High environments.
  
  

Summit 7 Systems requires background investigations. Any offer of employment is contingent upon the results of a reference/background check. We are a drug and alcohol-free workplace and require pre-employment drug screening.

Export Control Notice: This position may involve access to information subject to U.S. export control laws, including the International Traffic in Arms Regulations (ITAR) or the Export Administration Regulations (EAR). Qualified applicants will be considered regardless of national origin or immigration status. If a candidate does not meet the definition of a "U.S. Person" (as defined in 22 CFR

• 120.15), the company will assess whether an export license is required. If a license is required, any offer of employment will be contingent upon the candidate's eligibility for, and the company's ability to obtain, such a license in accordance with U.S. law. A "U.S. Person" includes U.S. citizens, lawful permanent residents, asylees, and refugees.
  
  

Summit 7 Systems is an equal opportunity/ affirmative action employer and an alcohol and drug free workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

Summit 7 Systems requires background investigations. Any offer of employment is contingent upon the results of a reference/background check. We are a drug and alcohol-free workplace and require pre-employment drug screening.

Salary: $90000 per year