Senior Infrastructure Engineer II

restor3d•Wilmington, MA

About The Position

The Senior Infrastructure Engineer II is responsible for the architecture, implementation, and lifecycle management of enterprise infrastructure platforms across on-premises datacenters and Microsoft Azure. This role serves as a technical authority for Windows Server, VMware virtualization, Azure hybrid cloud infrastructure, VDI platforms, Cisco Nexus and Meraki networking, enterprise backup and disaster recovery, and infrastructure security controls. This position operates as a Tier II & Tier III escalation resource, provides technical expertise for infrastructure modernization initiatives, and partners closely with Security, Applications, and Desktop Engineering teams to deliver resilient, scalable, and secure infrastructure services.

Requirements

7+ years of progressive experience in enterprise infrastructure engineering or architecture roles
7+ years of expert-level experience designing, administering, and securing Windows Server and Active Directory environments across multi-domain and hybrid on-prem / Azure infrastructures.
5+ years of experience architecting and operating Microsoft Azure infrastructure , including virtual networks, hybrid identity, IaaS security, VPN/ExpressRoute connectivity, and disaster recovery solutions.
5+ years of experience managing VMware vSphere / vCenter platforms in production datacenters, including cluster design, performance tuning, storage integration, and high-availability architectures.
5+ years of experience engineering and supporting enterprise networking environments , including TCP/IP architecture, VLAN segmentation, firewall policy design, site-to-site VPNs, and SD-WAN technologies.
3+ years of experience owning enterprise backup and disaster recovery programs , including platform selection, off-site replication strategies, immutable backups, DR testing, and RTO/RPO optimization.
Strong background in VDI platforms (Horizon and AVD preferred).
Hands-on experience with Cisco Nexus datacenter switching and enterprise routing design.
Advanced PowerShell automation skills.
Excellent problem-solving, communication, and documentation skills.

Nice To Haves

Experience operating in regulated environments (SOC 2, HIPAA, ISO 27001 preferred).

Responsibilities

Infrastructure Architecture & Engineering · Architect, deploy, and maintain enterprise Windows Server environments (2016, 2019, 2022, 2025) including Active Directory, Group Policy, DNS, DHCP, and file sharing services.
Design and manage large-scale virtualization platforms across both VMware vSphere and Microsoft Hyper-V , including ESXi and Hyper-V host lifecycle management, vCenter and SCVMM architecture, HA/DRS and failover clustering, distributed virtual switching, shared storage integration, capacity planning, performance optimization, and cross-platform migration strategies.
Lead implementation and optimization of Virtual Desktop Infrastructure platforms such as VMware Horizon, Azure Virtual Desktop, or Citrix, including golden image management, profile technologies, and user experience optimization.
Architect and administer Microsoft Azure infrastructure including: · IaaS workloads, virtual networks, NSGs, Azure Firewall, Application Gateways, VPN and ExpressRoute connectivity.
Azure hybrid identity (Entra ID Connect), Azure Files, Azure Backup, Azure Site Recovery, and landing zone design.
Cost governance, tagging strategy, and resource optimization.
Networking & Datacenter Engineering · Design and support enterprise network environments using: · Cisco Nexus switching (vPC, VXLAN/EVPN, fabric interconnects).
Cisco Meraki platforms and centralized dashboard management.
Implement and maintain firewalls, routing, VLAN architecture, QoS, site-to-site VPNs, and SD-WAN connectivity.
Troubleshoot advanced networking issues involving TCP/IP, DNS resolution failures, asymmetric routing, MTU issues, and performance degradation.
Backup, Disaster Recovery & Business Continuity · Own enterprise backup and recovery architecture , including: · Backup methodologies: image-based, application-aware, incremental-forever, immutable storage, air gapped backups, and off-site replication.
Platforms such as Azure Backup, Unitrends, Nexsan, etc.
Design and test disaster recovery strategies leveraging Azure Site Recovery, replication technologies, and recovery runbooks.
Lead annual DR testing exercises and document RTO/RPO performance.
Security & Compliance Engineering · Partner with Information Security to implement and maintain: · MFA enforcement, privileged access management, conditional access, and RBAC models.
Patch management for servers, hypervisors, and VDI infrastructure.
Monitor logs, SIEM alerts, and system telemetry to identify anomalies and potential compromises.
Maintain infrastructure compliance with SOC 2, ISO 27001, HIPAA, and internal security standards.
Automation & Operational Excellence · Experience developing automation using PowerShell , REST APIs, Azure Automation, and Infrastructure-as-Code (ARM/Bicep/Terraform).
Author and maintain detailed architecture diagrams, SOPs, recovery playbooks, and configuration standards.
Act as Tier II and Tier III escalation point for complex infrastructure and performance incidents.