The Infrastructure Engineer is responsible for designing, implementing, and maintaining the organization's global hybrid IT infrastructure, integrating Microsoft Azure, Microsoft 365, and on-premises Windows environments. This role ensures the stability, security, scalability, and overall efficiency of mission-critical systems, acting as a subject-matter expert in server operations, Azure IaaS, identity, and core infrastructure services. The ideal candidate is a highly motivated problem solver with strong technical and customer service skills, bringing deep hands-on experience while guiding standards, mentoring team members, and leading complex infrastructure initiatives to support and evolve a reliable and secure enterprise environment.
Key ResponsibilitiesMicrosoft 365 & Collaboration Services- Administer and support Microsoft 365 services including Exchange Online, Teams, SharePoint Online, OneDrive and EntraID.
- Troubleshoot complex M365 services, escalations, and integrations with on-premises infrastructure.
- Partner with security teams to implement conditional access, MFA, DLP and compliance policies.
Endpoint Management- Administer and optimize Jamf, Intune, Azure Virtual Desktop, and Autopilot solutions to streamline Apple and Windows device provisioning, configuration, and lifecycle management.
- Manage Windows, macOS, iOS, and Android device enrollment and configuration.
- Monitor endpoint health, compliance, and security posture, driving continuous improvement.
- Administer and maintain Group Policies across Active Directory and Entra ID-joined Windows devices.
- Oversee patching and update governance across Active Directory-joined and Entra ID-joined devices, ensuring consistent compliance, timely security updates, and reduced vulnerability exposure.
Cloud Infrastructure Engineering- Architect, deploy, and optimize Azure Virtual Machines, including standardized images, automation, availability sets, and performance tuning.
- Lead identity and access design using Azure AD, RBAC, Privileged Identity Management, and conditional access controls.
- Design and maintain Azure networking (VNets, peering, NSGs, private endpoints, firewalls).
- Oversee Azure governance including policies, tagging standards, resource organization, and cost optimization.
- Implement and maintain monitoring, alerting, and logging solutions using Azure Monitor, Log Analytics, or related tools
Core Infrastructure Services- Support and maintain DHCP, DNS, and Active Directory environments.
- Support Windows Server environments (physical and virtual), ensuring availability, performance, and security.
- Assist with disaster recovery planning and testing.
Operational Excellence & Leadership- Demonstrates end-to-end ownership of services, from design and implementation through operations and optimization.
- Develop documentation, standards, runbooks, and architectural diagrams.
- Mentor junior engineers and drive knowledge sharing.
- Partner across teams to design secure and scalable enterprise solutions.
- Participate in or lead on-call rotation for critical issues.
Required Qualifications- 5+ years of experience in infrastructure engineering with significant Azure and Windows Server focus.
- Azure IaaS experience including Virtual Machines, RBAC, and Entra ID.
- Advanced Windows Server expertise including builds, hardening, clustering, and troubleshooting.
- Strong experience managing Microsoft Intune and Microsoft Configuration Manager (SCCM), including device enrollment, compliance policies, application deployment, patch management, and security baselines.
- Hands-on experience with Active Directory, including user/group management and Group Policy.
- Working knowledge of Windows Server administration, including core services such as DNS, DHCP, and authentication.
- Strong PowerShell skills.
- Ability to juggle multiple projects and priorities and re-prioritize as necessary to align with current business.
Preferred Qualifications- ITIL or similar service management framework exposure.
- Azure certifications (AZ-104, AZ-305, or equivalent).
- Background in Zero Trust and privileged access strategies.
- Understanding of ITIL / ITSM processes (Incident, Change, Problem Management).
- Knowledge of hybrid cloud integrations and automation tools.
Salary Range: $110,000-$160,000
Candidate must be able to submit verification of his/her legal right to work in the U.S., without company sponsorship. #LI-AW1
#LI-Remote
