Senior Systems Architect - Windows Infrastructure and Security

Saab Automobile AB

$101K — $132K *
Aerospace & Defense
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in Systems Engineering, Computer Science, IT, Information Security, or related field.
  • 6-8+ years of experience managing and securing Windows environments.
  • Strong hands-on experience with PowerShell scripting and automation.
  • Proven experience with Windows domains, Group Policy Objects, and Active Directory.
  • Experience integrating third-party software with Windows environments.
  • Hands-on experience with Windows Deployment Services.
  • Solid understanding of Windows security architecture and system hardening techniques.

Responsibilities

  • Develop and document security architectures and network designs.
  • Evaluate systems for weaknesses and conduct security reviews.
  • Lead IT analysts and security engineers to enforce security protocols.
  • Implement and manage Group Policy Objects to enforce security standards.
  • Administer and harden Windows Server and workstation systems.
  • Manage Active Directory configurations, including user/group management.
  • Design role-based access control and apply least-privilege access models.

Benefits

  • Medical, vision, and dental insurance for employees and dependents.
  • Generous paid time off, including 8 designated holidays.
  • 401(k) with employer contributions.
  • Tuition and student loan assistance.
  • Wellness and employee assistance resources.
  • Employee stock purchase opportunities.
  • Short-term and long-term disability coverage.
Full Job Description
Job Description:

We are seeking an experienced Systems Engineer with strong Microsoft Windows infrastructure expertise to support the delivery of air traffic control systems to our customers. This role will focus on the implementation of Windows-based platforms to provide a secure environment for other Saab software to run in.

The ideal candidate will have hands-on experience with Windows Deployment Service, Active Directory, Group Policy management, network design, and hardware/software integration.

About the Role

This position plays a key role in implementing and deploying air traffic control systems for customers, ensuring Windows environments are configured to support our software while meeting safety and security regulations. This role requires both an independent drive to troubleshoot implementation and the ability to work collaboratively with teammates to integrate various system components.

Key Responsibilities
  • Architecture Design: Develop, document, and maintain comprehensive security architectures, network designs, and cloud infrastructures
  • Risk & Vulnerability Management: Evaluate deliverable systems to identify weaknesses, perform security reviews, and execute ethical hacks or penetration tests.
  • Leadership & Guidance: Lead information technology analysts, security engineers, and deployment teams to coordinate effective security protocols and align projects with security guidelines
  • Design, implement, and manage Group Policy Objects (GPOs) to enforce security configurations and organizational standards within customer environments.
  • Configure, administer, and harden Windows Server and Windows workstation systems as part of security solution deployments.
  • Implement and maintain Active Directory security configurations, including user/group management, OU structures, and policy enforcement.
  • Design and implement role-based access control (RBAC) and least-privilege access models.
  • Deploy, configure, and manage endpoint protection and antivirus solutions.
  • Apply system hardening practices aligned with industry security frameworks and best practices.
  • Perform security assessments of Windows environments and implement remediation actions.
  • Assist in creating secure configurations, patch processes, and compliance with security policies.
  • Document system configurations, security controls, and deployment procedures for customer environments.
  • Provide technical guidance and knowledge transfer to customer stakeholders when appropriate.


Compensation:
  • $101,600 - $132,000


The compensation range provided is a general guideline. When extending an offer, Saab, Inc. considers factors including (but not limited to) the role and associated responsibilities, location, and market and business considerations, as well as the candidate's work experience, key skills, and education/training.

Skills and Experience:

Required Qualifications
  • Bachelor's degree in Systems Engineering, Computer Science, Information Technology, Information Security, or a related field (or equivalent experience).
  • 6 - 8+ years of experience administering and securing Microsoft Windows environments.
  • Strong hands-on experience with PowerShell scripting and automation.
  • Proven experience creating and managing Windows domains, including development of Group Policy Objects and Active Directory structures.
  • Experience integrating third-party software into Windows environments.
  • Hands-on experience with Windows Deployment Services.
  • Solid understanding of Windows security architecture and system hardening techniques.


Preferred Qualifications
  • Experience with PXE boot and BIOS configuration.
  • Experience implementing role-based access control and identity management practices.
  • Experience performing security assessments and remediation.
  • Familiarity with security monitoring tools and SIEM platforms.
  • Knowledge of security frameworks such as NIST, CIS Benchmarks, or ISO 27001.
  • Relevant certifications such as:
    • CompTIA Security+
    • CISSP
    • Microsoft security or identity certifications
    • GIAC certifications


Key Skills
  • Hardware/operating system/software integration
  • Customer-facing technical delivery and documentation
  • Windows security architecture
  • Active Directory administration
  • Group Policy design and implementation
  • Endpoint security and antivirus management
  • Identity and access management (IAM)
  • System hardening and vulnerability remediation
  • Security assessments and remediation


Desired Tool Experience

Experience with the following tools and applications is highly desirable.
  • Microsoft Hyper-V Virtualization
  • Splunk
  • PDQ
  • RSA Authentication Manager


Citizenship Requirements:

Must be a U.S. citizen. Applicants selected may be subject to a government security investigation and must meet eligibility requirements for access to classified information.

Drug-Free Workplaces:

Saab is a federal government contractor and adheres to policies and programs necessary for sustaining drug-free workplaces. As a condition of employment, candidates will be required to pass a pre-employment drug screen.

Benefits:

Saab provides an excellent working environment offering professional growth opportunities, competitive wages, work-life balance, a business casual atmosphere and comprehensive benefits.

Highlights include:
  • Medical, vision, and dental insurance for employees and dependents
  • Generous paid time off, including 8 designated holidays
  • 401(k) with employer contributions
  • Tuition assistance and student loan assistance
  • Wellness and employee assistance resources
  • Employee stock purchase opportunities
  • Short-term and long-term disability coverage


Similar Jobs

More Jobs at Saab Automobile AB

More Aerospace & Defense Jobs

Find similar Senior Systems Architect - Windows Infrastructure and Security jobs: