Infrastructure Cloud Engineer

About The Position

Requirements

• 5+ years of experience supporting an enterprise in a team environment.
• 3+ years working with cloud-native networking is required, comfortable configuring Azure Virtual Networks, subnets, Network Security Groups, route tables, VNet peering, VPN Gateways, and Azure Firewall, as well as equivalent AWS constructs such as VPCs, Transit Gateways, and Security Groups
• 3+ years of hands-on experience administering Windows Server environments in a large enterprise, including patch management, Active Directory, and hybrid identity
• 1+ years of Cisco or Meraki experience is required.
• Solid working experience with Microsoft Entra ID, including Conditional Access, RBAC, PIM, and hybrid identity integration with on-premises Active Directory
• Proficiency in PowerShell scripting for automation, configuration management, and cloud administration tasks
• Hands-on experience designing, deploying, and securing infrastructure in both Microsoft Azure and AWS, including IAM, VNets/VPCs, storage, and compute services
• Strong working knowledge of Azure PaaS services including Azure App Service, Azure SQL, Azure Monitor, Azure Key Vault, and related platform components
• Working knowledge of infrastructure-as-code tooling such as Terraform; ability to read, write, and maintain IaC modules in a version-controlled environment
• Solid hands-on networking experience is required – including switching, routing, VLANs, firewall rules, and network segmentation
• Comfortable providing on-site support – this role requires physical presence in the Chicago office and occasionally at other locations to install, configure, troubleshoot, and replace network hardware
• Familiarity with zero trust networking principles, network segmentation, and security zoning in hybrid environments

Nice To Haves

• Related certifications will be helpful.
• Palo Alto experience is a plus.
• Microsoft Azure certification (AZ-104 Azure Administrator or AZ-500 Security Engineer) is a plus
• experience with Python or Bash a plus
• experience with SIEM, endpoint protection, or cloud-native security tooling is a plus

Responsibilities

• Design, implement, and maintain secure and scalable cloud infrastructure in Microsoft Azure and AWS
• Configure and manage Microsoft Entra ID, Conditional Access policies, role-based access control (RBAC), and privileged identity management (PIM)
• Deploy and monitor Microsoft Sentinel for cloud-native SIEM capabilities and automated threat response
• Support the lifecycle management of Windows Server environments and hybrid networking components
• Lead identity governance initiatives, ensuring appropriate access provisioning and audit readiness
• Develop and maintain infrastructure-as-code (IaC) using tools like Terraform to ensure repeatability and compliance
• Integrate AI-powered security and monitoring tools to proactively detect threats and reduce incident response times
• Participate in threat modeling, security risk assessments, and internal/external compliance audits
• Drive adoption of automation frameworks to streamline patching, system provisioning, and configuration management
• Collaborate with cross-functional teams to support application deployments and business continuity initiatives
• Contribute to runbooks, documentation, and knowledge sharing sessions to enhance team capabilities
• Operate as a subject matter expert and act as the escalation point for issue resolution and customer escalations.
• Provide on call support and assistance for production business systems on a rotating basis for after-hour support

Benefits

• Access to experts and resources for your Learning & Development journey
• Opportunity for internal mobility
• Employee referral bonus program
• Employee Resource Groups (ERGs)
• Annual fundraising and volunteer events to give back to communities
• Paid time off, floating holidays, time off to volunteer and rollover
• Paid parental leave
• Medical, dental, vision and 401k plans (with match)
• Flexible spending account, mass transit and dependent care plans available
• Health savings account, with a annual company contribution for plan participants
• Short-term and long-term disability; life insurance policies subsidized by company
• Additional benefits including pet insurance, accident care, access to legal advice and more