IT Infrastructure Engineer

Key Responsibilities

• Infrastructure Management
  • Design, deploy, manage, and maintain on-premises and cloud-based (Azure preferred) infrastructure components, including servers (Windows Server), virtualization platforms, storage, and networking equipment.
  • Administer and maintain Active Directory / Microsoft Entra , including identity lifecycle and conditional access.
  • Ensure the reliability, availability, and performance of critical IT systems through monitoring, maintenance, and troubleshooting.
  • Implement solutions that incorporate backup, disaster recovery, and business continuity principals.
• Security Operations & Engineering
  • Configure, manage, and optimize the Microsoft Defender suite (including Defender for Endpoint, Defender for Identity, Defender for Cloud Apps, Defender Vulnerability Management) to protect endpoints, identities, and cloud resources.
  • Operate and maintain Microsoft Sentinel (SIEM/SOAR) for security monitoring, threat detection, analysis, and incident response. Develop and tune detection rules, analytics, and response playbooks.
  • Respond to and implement changes/improvements based on security assessments, vulnerability scanning, and penetration testing results.
  • Respond to security incidents, perform root cause analysis, and implement corrective actions.
• General Duties
  • Create and maintain comprehensive documentation for infrastructure design, security configurations, and operational procedures.
  • Provide technical expertise and support to other IT staff and end-users on infrastructure and security-related matters.
  • Active participation in Infrastructure projects, including project management of small to medium-sized projects.
  • Lead projects with other Infrastructure staff as support.
  • Act as support on Infrastructure projects led by other team members.
  • Introduce ideas and advocate for improvement of Infrastructure team’s processes.
  • Participate in on-call support for critical infrastructure and security support, if applicable.

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field, OR equivalent practical experience.
• 5+ years of experience in IT infrastructure engineering/administration, including hands‑on experience with Windows Server, Active Directory/Entra , networking (TCP/IP, DNS, DHCP, VPNs, Firewalls, routing, switching), and virtualization.
• Proven, hands‑on experience implementing and managing security solutions within the Microsoft ecosystem, specifically:
  • Microsoft Defender Suite:
    Demonstrable experience with configuration, policy management, and alert triage across various Defender components (Endpoint, Identity, etc.).
  • Microsoft Sentinel:
    Experience with log ingestion, KQL query writing, analytics rule creation, incident investigation, and SOAR playbook development/management.
• Strong understanding of core information security principles (e.g., least privilege, defense‑in‑depth, privileged identity management, privileged access management, incident response lifecycle).
• Experience with scripting languages, particularly Power Shell, for automation and administration.
• Excellent troubleshooting, analytical, and problem‑solving skills.
• Strong communication and interpersonal skills, with the ability to explain complex technical concepts to diverse audiences.
• Ability to work independently and as part of a team in a fast‑paced environment.
• Familiarity with compliance frameworks (e.g., NIST, ISO 27001, GDPR).
• Experience with Microsoft Azure IaaS and PaaS services.

• Relevant industry certifications (e.g., Microsoft Certified:
  Security Operations Analyst Associate (SC‑200), Microsoft Certified:
  Identity and Access Administrator Associate (SC‑300), Microsoft Certified:
  Azure Security Engineer Associate (AZ‑500), Microsoft 365 Certified:
  Security Administrator Associate (MS‑500), CompTIA Security+, CISSP).

We foster a culture that is diverse and inclusive and strive for pay practices that are fair, competitive and reflect our commitment to pay equity. Our compensation decisions include but are not limited to a candidate’s qualifications including skill sets, education, experience and training, licensure and…