Staff Systems Engineer

About The Position

Requirements

• IaC: Advanced proficiency with Terraform, Ansible, and CI/CD.
• Cloud: Extensive experience with AWS, Azure, GCP.
• PKI: Enterprise PKI and certificate lifecycle management (ADCS, DigiCert, Key Factor).
• Active Directory: Expert in AD architecture, GPOs, federation, and automation.
• Observability: Skilled with logging, tracing, metrics, and dashboarding tools.
• Scripting: Python, PowerShell, Bash.
• Compliance: Strong experience with HIPAA, HiTrust, ISO 27001, FDA, FIPS 140-2, GxP.
• Kubernetes expertise.
• Demonstrated track record of mentoring technical teams and contributing to high-impact cross-functional initiatives.
• Experience managing vendors, contracts, and operational metrics.
• Strong communication, collaboration, and problem-solving skills.
• Ability to educate, influence, and align stakeholders in regulated enterprises.
• Bachelor's degree in Computer Science, Information Systems, Engineering, or related field required; Master's preferred.
• 10+ years in infrastructure engineering, architecture, or operations, with 5+ years in mentoring or technical guidance roles.
• Experience designing and managing infrastructure in regulated environments (HIPAA, HiTrust, ISO 27001, FDA, FIPS 140-2).

Nice To Haves

• Cloud: AWS/GCP/Azure Solutions Architect, Networking Specialty.
• Security: CISSP, CISM.
• Microsoft: MCSA/MCSE (Active Directory, Windows Server).
• Project/Process: PMP, ITIL Foundation.

Responsibilities

• Define and implement the roadmap for automated infrastructure and process innovation across hybrid environments.
• Mentor infrastructure engineers, fostering ownership, efficiency, and compliance.
• Partner with Product teams to ensure delivery is supported by scalable, secure, and compliant infrastructure.
• Translate product requirements into secure, scalable infrastructure designs.
• Advise teams on infrastructure opportunities, limitations, and automation best practices.
• Contribute to backlog prioritization and infrastructure enhancements aligned with product goals.
• Maintain automated provisioning using Terraform and Ansible, supporting CI/CD pipelines across cloud and on-prem environments with Developer Enablement teams.
• Evaluate and implement automation/orchestration tools for full lifecycle management.
• Own PKI architecture and certificate lifecycle management (issuance, renewal, revocation, inventory).
• Ensure compliance with HIPAA, HiTrust, ISO 27001, FDA, and FIPS 140-2.
• Architect and manage AD domains, controllers, GPOs, and federation.
• Oversee integrations with Azure AD, Google Directory, and identity/access management automation.
• Implement observability practices including logging, tracing, and metrics to ensure infrastructure reliability and performance.
• Design and maintain controls for HIPAA and other regulatory frameworks, ensuring audit readiness.
• Establish KPIs and SLAs for reliability, performance, and compliance.
• Drive process improvement and incident avoidance through automation and observability.
• Provide technical guidance and escalation support.
• Support infrastructure budget planning, vendor evaluation, and contract management.
• Align priorities with InfoSec, Compliance, and Application teams.
• Contribute to change management, incident response, and design control principles.
• Support virtualization, storage, Windows/Linux standards, and Kubernetes clusters.