Windows Infrastructure Engineer
Remote
Long Term
Role Purpose
Own the operation and improvement of Windows Server and Windows-based infrastructure across on-premises and cloud environments. The candidate must bring strong hybrid Active Directory / Entra ID capability, endpoint-management and patching experience, practical PowerShell automation, and a disciplined approach to identity, authentication, certificate, and cross-platform troubleshooting.
Key Responsibilities
• Administer and troubleshoot Windows Server, Active Directory, Group Policy, hybrid Entra ID, and associated authentication services.
• Support endpoint management, Windows Autopilot, Intune configuration, third-party application patching, and Windows operational hardening.
• Create and maintain PowerShell automation for repeatable administration, inventory, configuration, reporting, and remediation activities.
• Manage Windows-side identity, authentication, certificate, and PKI-related operational activities in coordination with security and identity teams.
• Support Azure IaaS/PaaS Windows workloads, including virtual machines, availability, management/monitoring, identity, and network dependencies.
• Troubleshoot core infrastructure dependencies including DNS, DHCP, routing, VPN, certificates, federation, and SSO/SAML.
• Develop operational documentation, standard procedures, incident evidence, and change records; contribute to runbook maturity and transition knowledge.
• Collaborate across Linux, network, cloud, service delivery, and security teams during incidents, planned changes, and problem management.
Preferred Technical Skills
The following are not absolute gating criteria unless specifically called out during candidate review. They materially strengthen the candidate’s fit and should be highlighted in the recruiter submission.
• Azure Arc, Azure Virtual Desktop, Azure Update Manager, Defender, or endpoint-security operational experience.
• Microsoft certifications such as AZ-104, AZ-800/AZ-801, MD-102, SC-300, or equivalent current credentials.
• Experience with enterprise certificate services, AD CS, smartcard / certificate-based authentication, or key-management operational processes.
• Ansible, Python, configuration-management, or infrastructure-as-code exposure.
• Experience operating Windows infrastructure in regulated or audit-conscious enterprise environments.
Cross-Functional / T-Shaped Requirements
The primary vertical is Windows infrastructure and hybrid identity. The candidate must independently recognize routine Linux, network, cloud, and identity boundary conditions and engage the right team with usable diagnostics.
• Working Linux administration knowledge sufficient to collect logs, validate DNS/network behavior, and support cross-platform identity troubleshooting.
• Working Azure operations capability for Windows workloads and related cloud services.
• Working enterprise-networking knowledge including DNS, DHCP, routing, VPN, firewall behavior, and connectivity testing.
• Working understanding of SSO/SAML, federation, Conditional Access, MFA, and application authentication dependencies.
Experience and Certifications
• Must have 4-7 years of relevant Windows infrastructure, Active Directory, hybrid identity, or endpoint-management experience.
• Must demonstrate independent operational use of Windows Server, AD, Group Policy, Entra ID, Intune, and PowerShell.
• Strongly preferred: current Microsoft Windows Server, Azure, endpoint-management, identity, or security certifications.
• Experience must be operational, not limited to desktop support; candidates should show ownership of servers, directory services, automation, and enterprise change processes.
Never miss an opportunity! Create an alert based on the job you applied for.
