Senior Infrastructure Engineer

RESPONSIBILITIES:
Kforce is seeking a Senior Infrastructure Engineer with 10+ years of experience supporting infrastructure within a global, multi-site enterprise environment in Cottonwood Heights, UT. This role is responsible for designing, implementing, and operating secure, scalable, and highly available infrastructure across hybrid environments (on-premises and cloud). Cybersecurity is a core expectation of this role. The ideal candidate approaches infrastructure with a security-by-design mindset, partnering closely with cybersecurity, network, and application teams to reduce risk while enabling reliable operations.

Infrastructure represents a primary attack surface in modern enterprises. In this role, cybersecurity awareness is essential to:
* Design and maintain secure configuration baselines and least-privilege access
* Execute effective patching and vulnerability remediation
* Enable centralized logging and monitoring for detection, investigation, and audit readiness
* Implement secure operational patterns such as segmentation, secure administrative access, encryption, and controlled change management

Key Responsibilities:
* Design, deploy, and operate enterprise infrastructure services across compute, storage, virtualization, and core platform services
* Own full infrastructure lifecycle management, including capacity planning, patching, upgrades, performance tuning, and decommissioning
* Provide Tier 3 support for complex incidents; Conduct root cause analysis (RCA) and implement long-term corrective actions
* Design and support high availability, backup, and disaster recovery (DR) solutions for critical systems
* Partner with cybersecurity teams on vulnerability management, remediation tracking, EDR integration, and audit evidence
* Implement and maintain secure hardening standards, privileged access workflows, and secure administrative paths
* Automate infrastructure provisioning and configuration using scripting and Infrastructure as Code (IaC)

REQUIREMENTS:
* 10+ years of infrastructure engineering experience in a global, multi-site or multi-region enterprise
* Strong hands-on experience administering and troubleshooting Windows Server and/or Linux
* Experience with virtualization platforms (VMware or Hyper-V) and hybrid cloud infrastructure
* Solid understanding of networking fundamentals (DNS, DHCP, routing concepts, firewall dependencies)
* Demonstrated experience operating infrastructure with a cybersecurity-focused mindset (hardening, patching, vulnerability remediation, logging, monitoring)
* Strong documentation skills and ability to support knowledge transfer

Preferred Qualifications:
* Azure-first or hybrid Azure experience, including landing zones, governance, networking, and identity
* Infrastructure as Code experience using Terraform and/or Bicep/ARM, with CI/CD pipelines
* Experience with Microsoft Defender for Endpoint/Cloud, Microsoft Sentinel/Log Analytics, or equivalent tools
* Background supporting regulated or audit-driven environments, including evidence collection and control validation

Tools & Technologies (Representative):
* Platforms & Compute: Windows Server, Linux (RHEL/Ubuntu), VMware vSphere/ESXi, Hyper-V, Azure (AWS or Google Cloud Platform experience a plus)
* Identity & Access: Active Directory, Entra ID (Azure AD), MFA/SSO, RBAC, PIM/PAM
* Monitoring & Logging: Azure Monitor, Log Analytics, Microsoft Sentinel, Splunk, ELK, Grafana/Prometheus
* Security: Microsoft Defender for Endpoint/Cloud or equivalent EDR/CSPM; vulnerability scanning tools (Tenable, Qualys, Rapid7)
* Automation & IaC: PowerShell, Bash, Python; Terraform, Bicep/ARM, Ansible; Git; Azure DevOps or GitHub Actions
* ITSM & Operations: ServiceNow or comparable ITSM and CMDB tools

The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.

We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.

Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless and until paid and may be modified in its discretion consistent with the law.

This job is not eligible for bonuses, incentives or commissions.

Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.

By clicking ?Apply Today? you agree to receive calls, AI-generated calls, text messages or emails from Kforce and its affiliates, and service providers. Note that if you choose to communicate with Kforce via text messaging the frequency may vary, and message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You will always have the right to cease communicating via text by using key words such as STOP.