Microsoft Azure Systems Engineer

Job Description

This is a deeply hands‑on engineering role focused on building, configuring, and troubleshooting Azure infrastructure on a daily basis. We’re seeking engineers who have personally architected and operated production Azure environments and who take pride in owning the full lifecycle — from design through deployment and ongoing operations.

The ideal candidate brings real‑world, production experience and enjoys rolling up their sleeves to deliver reliable, secure, and scalable cloud solutions.

• You will design and implement scalable, secure Azure infrastructure (IaaS, PaaS, and hybrid)
• You will deploy and manage Azure Virtual Networks, NSGs, Azure Firewall, and private endpoints
• You will architect and support hybrid connectivity (VPN, Express Route)
• You will implement high availability and disaster recovery solutions

• You will own the deployment, configuration, patching, and operational health of Windows workloads running in Azure
• You will integrate Azure AD / Entra  enterprise identity systems
• You will implement RBAC, Conditional Access, and least‑privilege access models
• You will support Microsoft 365 and Azure AD integrations where required

• You will build and maintain infrastructure using Terraform (preferred), ARM/Bicep templates, Power Shell, and Azure CLI
• You will ensure deployments are idempotent and repeatable — manual deployments are not acceptable
• You will contribute to CI/CD pipelines for infrastructure delivery

• You will implement Azure Security Center / Defender for Cloud controls
• You will configure logging and monitoring (Azure Monitor, Log Analytics)
• You will support compliance frameworks (e.g., NIST, RMF, CMMC as applicable)
• You will conduct vulnerability remediation and hardening

• You will implement alerting and performance monitoring
• You will own backup and recovery strategy (Azure Backup, Site Recovery)
• You will participate in incident response and root cause analysis — and personally drive remediation
• You will document architecture and operational runbooks

This role is about maturing and optimizing an already functional Azure environment into a fully standardized, enterprise‑ready platform — while keeping delivery moving at full speed.

• Build a deep understanding of the current Azure architecture, deployment pipelines, networking, and security model.
• Identify opportunities to simplify, standardize, and reduce operational risk.
• Ensure CI/CD pipelines continue operating smoothly and reliably.
• Begin developing clear, structured documentation of infrastructure, dependencies, and operational workflows.
• Establish a practical, prioritized roadmap for platform improvements aligned to business objectives.

• Introduce infrastructure‑as‑code and repeatable deployment patterns where needed to increase consistency and reliability.
• Refine identity, access controls, and network architecture to align with enterprise‑grade best practices.
• Implement consistent naming, tagging, and environment standards.
• Partner with the Network Operations Center to onboard systems into a 24×7 monitoring and alerting framework.
• Enhance logging, observability, and operational visibility across the environment.

• Improve resiliency through well‑defined backup, disaster recovery, and restoration testing.
• Increase deployment reliability with improved rollback strategies and change discipline.
• Reduce technical debt while preserving development velocity.
• Deliver a well‑documented, supportable, and scalable Azure platform designed for long‑term growth.

By the six‑month mark, the environment will be more consistent, observable, resilient, and operationally mature — positioned to support both current demands and future expansion.

Every item below requires demonstrated, hands‑on experience. We are evaluating what you have personally built and operated, not what your team delivered while you were on it.

• An Active Secret Clearance at a minimum
• 5…