Responsibilities
- Architect, deploy, and maintain Microsoft 365, Azure, Azure AD (Entra ID), and Azure Virtual Desktop (AVD) environments.
- Manage and optimize Windows Server ecosystems, including Terminal Servers, Remote Desktop Services (RDS), and Remote Desktop farms.
- Perform advanced troubleshooting and resolution for system performance issues, authentication problems, networking, DNS, storage, virtualization, CPU spikes, storage failures, service outages, domain trust issues, and authentication failures.
- Oversee and execute migrations for Microsoft 365, Exchange, file servers, cloud workloads, and related environments.
- Implement and manage enterprise security tools, including Sophos Central, Windows Defender, and SonicWall firewalls (with advanced rule tuning, NAT, VPN configuration).
- Conduct vulnerability mitigation, system hardening, firewall rule optimization, and security policy enforcement in line with best-practice cybersecurity frameworks.
- Serve as Tier 3–4 escalation point for complex support tickets involving servers, cloud services, firewalls, identity management, or high-severity incidents.
- Participate in on-call rotation to respond to critical alerts and high-severity incidents.
- Create and maintain comprehensive documentation, runbooks, environment diagrams, and knowledge base resources to enhance team operations and efficiency.
- Recommend infrastructure improvements focused on reliability, security, and performance.
- Develop and implement automations, scripts, policies, and configurations using PowerShell, Intune, Azure Automation, Group Policy, and related tools.
Requirements
- 5+ years of experience in a Senior Systems Engineer, Cloud Engineer, or Infrastructure Engineering role, preferably in a fast-paced Managed Service Provider (MSP) environment.
- Advanced proficiency in Microsoft 365, Azure, Azure AD/Entra ID, Windows Server (2012–2025), Terminal Server/RDS/AVD, Intune and endpoint management, VMware, and/or Hyper-V virtualization.
- Strong hands-on experience with SonicWall and Sophos firewalls (including advanced rule tuning, NAT, VPN), Sophos Central, DNS, DHCP, Group Policy, and Active Directory/domain services.
- Proven track record of handling advanced escalations and resolving complex technical issues under pressure.
- Excellent communication and customer-facing skills for interacting with clients and stakeholders.
- Strong documentation discipline and ability to produce clear, detailed technical materials.
- Ability to thrive in a high-pressure environment, manage multiple priorities, and demonstrate an ownership mentality with a strong commitment to service excellence.
Work Arrangement
Remote (Worldwide)
