Job Requirements
Charleston, SC
Secret Polygraph not specified
Senior Level Career (10+ yrs experience)
$100,000 - $135,000
Job Description
Forge Forward is searching for a Sr. Systems Engineer to support a client in Charleston, SC. Must have a minimum seven (7) years of experience in systems engineering and support for IT and C4I systems. Candidates must hold an active Secret clearance which requires US citizenship. This position requires 100% on-site support.
The Senior Systems Engineer will support a Navy enterprise command-and-control environment in Charleston, SC. This position serves as a senior technical authority responsible for the design, engineering, hardening, and lifecycle management of enterprise Windows environments within secure DoD networks. The role centers on Windows Server ecosystems, identity and access management, system hardening, and compliance enforcement, with responsibility for maintaining highly available, secure, and scalable infrastructure. The engineer will lead system-level vulnerability remediation efforts, RMF compliance activities, and enforcement of DISA STIG baselines across enterprise environments. This is a senior, hands-on engineering role requiring deep expertise in Windows internals, Active Directory design, Group Policy architecture, and enterprise cybersecurity practices. The candidate must independently resolve complex system issues, guide technical decisions, and contribute to architecture and engineering strategy across the environment. Candidate will have privileged system access and must have CompTIA Security+ certification and ability to meet DoD Cybersecurity Workforce IAT Level II certification with an operating systems certificate (e.g. Linux+).
Functional Responsibilities:
• Engineer and administer enterprise Windows Server environments (2016/2019/2022) within classified and DoD networks
• Architect, manage, and optimize Active Directory Domain Services (AD DS), including forests, domains, trust relationships, and replication topology
• Design and enforce Group Policy (GPO) strategy and configuration baselines across enterprise systems
• Implement and maintain Windows security hardening in accordance with DISA STIGs and DoD cybersecurity policies
• Serve as the technical lead for vulnerability assessment and remediation, leveraging ACAS scan results and system-level mitigation strategies
• Lead engineering efforts for system compliance, auditing, and continuous monitoring under RMF frameworks
• Develop advanced automation using PowerShell (primary) to support configuration enforcement, auditing, and remediation
• Support and optimize virtualized infrastructure (VMware vSphere/ESXi/vCenter) hosting Windows workloads
• Provide engineering support for Windows-based VDI environments, focusing on system performance, stability, and security
• Implement and manage identity, authentication, and access control mechanisms, including least privilege and privileged access strategies
• Troubleshoot and resolve complex Windows OS, AD, and infrastructure-level issues across lab and production environments
• Participate in architecture reviews, engineering boards, and configuration control processes
• Produce and maintain engineering documentation, including system designs, implementation plans, and compliance artifacts
• Mentor junior engineers and provide technical leadership within a multi-disciplinary team environment
Required Skills:
• Seven (7) years of experience in systems engineering and support for IT and C4I systems.
• Bachelor’s or Master’s degree desired in engineering (e.g., network, electrical, mechanical, systems, etc.).
• CompTIA Security+ certification or equivalent.
• Operating System Certificate (e.g., Linux+, Windows Server, CCNA, etc.).
• Candidates must be a US citizen and hold an active SECRET clearance with a current SSBI/T5 investigation. TS/SCI desired.
Desired Skills:
• Advanced expertise in Active Directory architecture (multi-domain/forest design, replication, disaster recovery strategies)
• Deep understanding of Windows Server internals and enterprise infrastructure design
• Strong PowerShell development skills (modular scripting, automation frameworks, secure coding practices)
• Experience with hybrid identity solutions (Azure AD / Entra ID)
• Proven experience leading STIG implementation and compliance at scale
• Experience supporting classified DoD environments with privileged administrative access
• Familiarity with infrastructure-as-code concepts (desired, not required)
• Demonstrated ability to lead engineering efforts and influence architecture decisions
The Senior Systems Engineer will support a Navy enterprise command-and-control environment in Charleston, SC. This position serves as a senior technical authority responsible for the design, engineering, hardening, and lifecycle management of enterprise Windows environments within secure DoD networks. The role centers on Windows Server ecosystems, identity and access management, system hardening, and compliance enforcement, with responsibility for maintaining highly available, secure, and scalable infrastructure. The engineer will lead system-level vulnerability remediation efforts, RMF compliance activities, and enforcement of DISA STIG baselines across enterprise environments. This is a senior, hands-on engineering role requiring deep expertise in Windows internals, Active Directory design, Group Policy architecture, and enterprise cybersecurity practices. The candidate must independently resolve complex system issues, guide technical decisions, and contribute to architecture and engineering strategy across the environment. Candidate will have privileged system access and must have CompTIA Security+ certification and ability to meet DoD Cybersecurity Workforce IAT Level II certification with an operating systems certificate (e.g. Linux+).
Functional Responsibilities:
• Engineer and administer enterprise Windows Server environments (2016/2019/2022) within classified and DoD networks
• Architect, manage, and optimize Active Directory Domain Services (AD DS), including forests, domains, trust relationships, and replication topology
• Design and enforce Group Policy (GPO) strategy and configuration baselines across enterprise systems
• Implement and maintain Windows security hardening in accordance with DISA STIGs and DoD cybersecurity policies
• Serve as the technical lead for vulnerability assessment and remediation, leveraging ACAS scan results and system-level mitigation strategies
• Lead engineering efforts for system compliance, auditing, and continuous monitoring under RMF frameworks
• Develop advanced automation using PowerShell (primary) to support configuration enforcement, auditing, and remediation
• Support and optimize virtualized infrastructure (VMware vSphere/ESXi/vCenter) hosting Windows workloads
• Provide engineering support for Windows-based VDI environments, focusing on system performance, stability, and security
• Implement and manage identity, authentication, and access control mechanisms, including least privilege and privileged access strategies
• Troubleshoot and resolve complex Windows OS, AD, and infrastructure-level issues across lab and production environments
• Participate in architecture reviews, engineering boards, and configuration control processes
• Produce and maintain engineering documentation, including system designs, implementation plans, and compliance artifacts
• Mentor junior engineers and provide technical leadership within a multi-disciplinary team environment
Required Skills:
• Seven (7) years of experience in systems engineering and support for IT and C4I systems.
• Bachelor’s or Master’s degree desired in engineering (e.g., network, electrical, mechanical, systems, etc.).
• CompTIA Security+ certification or equivalent.
• Operating System Certificate (e.g., Linux+, Windows Server, CCNA, etc.).
• Candidates must be a US citizen and hold an active SECRET clearance with a current SSBI/T5 investigation. TS/SCI desired.
Desired Skills:
• Advanced expertise in Active Directory architecture (multi-domain/forest design, replication, disaster recovery strategies)
• Deep understanding of Windows Server internals and enterprise infrastructure design
• Strong PowerShell development skills (modular scripting, automation frameworks, secure coding practices)
• Experience with hybrid identity solutions (Azure AD / Entra ID)
• Proven experience leading STIG implementation and compliance at scale
• Experience supporting classified DoD environments with privileged administrative access
• Familiarity with infrastructure-as-code concepts (desired, not required)
• Demonstrated ability to lead engineering efforts and influence architecture decisions
group id: RTX1a3b39