Cloud Infrastructure Engineer

Trinetix

About The Position

We are seeking a Middle Cloud Infrastructure Engineer to own and evolve a predominantly Azure-based infrastructure environment. This is a hands-on, senior-level individual contributor role with high autonomy and responsibility across cloud infrastructure, identity, endpoint management, and security. The right person serves as a technical authority across the Microsoft ecosystem, responsible for designing, operating, and continuously improving a cloud-first environment that supports a distributed workforce and field operations at scale. This role requires ownership, proactive communication, and the judgment to prioritize without constant direction. Environment Overview Cloud: Azure IaaS (primary platform) - VMs, Networking, Storage Accounts, Key Vaults, Azure Virtual Desktop Identity & Access: Microsoft Entra ID, Active Directory, RBAC, Conditional Access, MFA Data: SQL Server, Azure SQL Managed Instances Endpoints: ~2,000 Windows 11 field devices + ~800 Zebra Android handhelds Productivity: Microsoft 365 E5 - Exchange Online, Teams, SharePoint, Defender suite Network: All-Fortinet; day-to-day management handled by third-party vendor Security: Microsoft Defender for Endpoint, EDR, Vulnerability Management via M365 E5 stack

Requirements

2-4 years of experience with Windows Server administration
1-3 years of Azure IaaS experience - VMs, VNets, NSGs, Storage, Key Vaults, Azure Virtual Desktop
Good understanding of Entra ID (Azure AD): RBAC, Conditional Access, MFA
Basic experience with SQL Server or Azure SQL Managed Instances
Basic to intermediate PowerShell scripting skills
Experience with Microsoft 365 administration - Exchange Online, Teams, SharePoint
Familiarity with Microsoft Defender and endpoint security concepts
Understanding of networking fundamentals (TCP/IP, DNS, firewall concepts, VPN)
Ability to work independently with guidance from senior team members

Nice To Haves

Basic knowledge of Fortinet solutions (FortiGate or similar)
Experience with Microsoft Intune and endpoint management
Exposure to vulnerability management tools (Defender or similar)
Experience with Android / mobile device management is a plus
Relevant certifications (AZ-104, SC-300, MS-102 or similar) are a plus

Responsibilities

Support day-to-day administration of Azure IaaS infrastructure - virtual machines, networking, storage, Key Vaults, and Azure Virtual Desktop
Assist with Entra ID and Active Directory management: user lifecycle, RBAC, Conditional Access policies, MFA, and SSO integrations
Support administration of SQL Server and Azure SQL Managed Instances including patching, basic monitoring, and availability checks
Assist with endpoint management across Windows 11 and Android (Zebra) devices via Microsoft Intune - policy configuration, compliance, and app deployment
Help maintain Microsoft 365 E5 services: Exchange Online, Teams, SharePoint, and Defender
Participate in patch management, vulnerability remediation, and security baseline enforcement
Support disaster recovery and backup procedures; participate in DR testing and incident response
Contribute to PowerShell automation to reduce manual operational tasks
Maintain documentation of system configurations, processes, and runbooks
Participate in on-call rotation and support maintenance windows when required
Escalate complex infrastructure issues to senior team members