What you\'ll do:We\'re seeking an Architect, Systems Engineering to set the technical direction for our infrastructure platforms. This is a senior architect role focused on design, technology evaluation, standards, and mentorship rather than direct people management or day-to-day administration. You\'ll partner with the systems engineering team, cybersecurity, and Enterprise Architecture to shape how our datacenter, identity, and hybrid-cloud environments evolve.
Our hybrid environment runs 300+ servers on-premise and in the cloud across Active Directory, Microsoft Exchange, VMware, Cisco UCS, and enterprise storage and backup platforms, alongside a substantial Microsoft 365, Entra ID, and Azure footprint. You\'ll define target-state architecture, reference patterns, and configuration standards that keep these platforms stable, secure, audit-ready, and aligned to enterprise direction.
- Design target-state architecture and reference patterns for the server estate (300+ Linux and Windows hosts on-premise and in the cloud) that engineers can build and operate against.
- Set architectural standards and lifecycle strategy for Active Directory, Entra ID, Exchange, and Microsoft 365, and review proposed changes against those standards.
- Define configuration baselines and governance models, then evaluate ongoing compliance through audit, reporting, and design reviews.
- Evaluate new technologies and vendor solutions. Lead proofs of concept, score offerings against bank requirements, and produce written recommendations for Enterprise Architecture, security leadership, and the CIO.
- Mentor systems engineers on design thinking, troubleshooting methodology, and platform-specific best practices. Build cross-training plans that raise overall team capability.
- Author reference architectures, design documents, and runbooks that serve as the source of truth for Tier 1 and Tier 2 support staff and for change implementers.
- Partner with cybersecurity to design hardening standards, vulnerability remediation patterns, and audit response approaches across the server estate.
- Architect complex initiatives such as platform upgrades, AD and Exchange migrations, and cloud onboardings. Present design options, tradeoffs, and recommendations to senior leadership.
- Define how the team applies AI assistants (Microsoft Copilot, GitHub Copilot, Claude) to scripting, troubleshooting, and documentation, including guardrails and review patterns for safe, responsible use.
- Serve as a senior technical reviewer on the Change Advisory Board for infrastructure changes affecting production.
- Provide architectural escalation support for major incidents and planned maintenance, including occasional after-hours coverage.
What do you need?- 10+ years in infrastructure systems engineering, including time in a senior, principal, or architect-level role within a hybrid or on-premise enterprise environment.
- Bachelor\'s degree in Computer Science, MIS, or equivalent experience.
- Demonstrated experience designing and governing environments of 200+ Windows and Linux servers, including patch and security configuration strategy at enterprise scale.
- Strong PowerShell scripting and automation skills across Windows, AD, Exchange, and virtualization platforms, with the design judgment to know where automation belongs and where it doesn\'t.
- Working familiarity with AI assistants (Microsoft Copilot, ChatGPT, Claude) and the ability to define how a team should use them responsibly to accelerate scripting, research, and documentation.
- Subject-matter expertise in four or more of the following:
- Identity & directory: Active Directory at scale (schema, GPO, FSMO, replication, DNS/DHCP), Entra ID, SSO/SAML, Azure AD Connect.
- Messaging & productivity: Microsoft Exchange (on-prem and hybrid) and Microsoft 365 administration.
- Virtualization & compute: VMware vSphere/vCenter, Horizon View; Cisco UCS, Intersight, HyperFlex; Nutanix or other HCI.
- Cloud: Azure compute, storage, and networking; on-prem-to-cloud migration patterns.
- Storage, backup & DR: SAN/NAS, replication and storage protocols; Pure, NetApp, Nutanix; Rubrik, Veritas, Commvault, or Zerto.
- Security & access: Privileged access management with CyberArk or equivalent; vulnerability remediation; familiarity with packet/traffic analysis tools (Wireshark).
- Experience working directly with vendor technical representatives (Microsoft, Cisco, VMware, Nutanix) to design joint solutions, evaluate roadmaps, and resolve complex issues.
- Strong communication and documentation skills. Able to translate complex technical decisions into clear options for both engineers and non-technical stakeholders, and to manage multiple workstreams of varying length, priority, and complexity.
Preferred Qualifications- TOGAF, Azure Solutions Architect Expert, or comparable enterprise architecture credential.
- VMware Certified Professional (VCP-DCV) or equivalent virtualization certification.
- Microsoft certifications: MCSE preferred (MCSA or MTA acceptable); Azure Administrator Associate or Identity and Access Administrator a plus.
- Prior experience designing infrastructure in financial services or another regulated industry.
- Experience leading the design of AD forest upgrades, Exchange migrations, or multi-cloud migration projects.
- Familiarity with Microsoft SQL Server administration or file transfer automation platforms (e.g., MOVEit).
- Hands-on experience with Microsoft Copilot for Microsoft 365, Copilot for Security, or comparable AI-assisted operations or admin tooling.
