Microsoft Cloud and Security Engineer

The Middlesex Corporation is a nationally recognized and award-winning leader in the heavy civil construction industry. Since 1972, the family business founded by Robert W. Pereira has developed an extensive client and project list through its consistent efforts to safely build America's infrastructure. The Middlesex Corporation specializes in building and reconstructing highways, bridges, marine, rail, and transit facilities through its collaborative team approach and focus on core values. In addition, Middlesex Asphalt in Central Florida is one of the largest and most productive asphalt plants in the United States, with Middlesex Paving earning an equally solid regional presence and reputation.

Position Summary:

As a Microsoft Cloud & Security Engineer, reporting to the IT Operations Manager, you will take ownership of endpoint management and security across Middlesex's Microsoft environment. This role is primarily responsible for Microsoft Intune and Microsoft Defender, ensuring devices are secure, compliant, and consistently managed across the organization.

The position also supports core Microsoft 365 services and plays a key role in strengthening security, improving device management, and delivering a reliable end-user experience across both office and field teams.

Responsibilities:

Own Microsoft Intune for device provisioning, configuration, and lifecycle management
Design and manage application deployment (Win32 apps, Microsoft 365 apps, updates)
Enforce device compliance policies and security baselines
Standardize endpoint configurations across laptops, tablets, and mobile devices

Administer Microsoft Defender (Endpoint, Office 365, Identity)
Monitor, triage, and respond to security alerts and incidents
Implement and maintain endpoint protection and threat detection policies

Manage Entra ID (Azure AD) users, groups, and access controls
Design and maintain Conditional Access policies
Support MFA and device-based access enforcement

Support Exchange Online, Teams, and SharePoint
Assist with configuration, troubleshooting, and service optimization
Manage licensing and identify optimization opportunities

Provide L2/L3 escalation support for endpoint and cloud-related issues
Maintain documentation, standards, and procedures
Collaborate with IT team members on system improvements and security initiatives

Operate in a small, nimble IT team with shared ownership and accountability
Partner with external providers, including MSPs and MSSPs, to support and enhance internal capabilities
Take a hands-on, "roll up your sleeves" approach to problem solving and implementation
Continuously improve Microsoft Secure Score and overall security posture
Stay current with Microsoft technologies and security best practices through ongoing learning
Contribute ideas and drive improvements to systems, processes, and security controls

Participation in an on-call rotation may be required
Occasional travel may be required
Perform other duties as assigned, consistent with the scope and level of this role

Qualifications:

3-5+ years of experience in Microsoft cloud administration
Strong hands-on experience with:
?- Microsoft Intune (Endpoint Manager)
?- Microsoft Defender suite
?- Microsoft 365 administration
?- Entra ID (Azure AD)

Experience with application deployment, Conditional Access, and device compliance policies
Experience managing Windows endpoints in a business environment
Strong troubleshooting and problem-solving skills
Effective communication and organizational skills

Preferred Qualifications:

Familiarity with Microsoft Azure services
Basic scripting or automation experience (e.g., PowerShell)
Understanding of Zero Trust security principles
Experience working in structured IT environments (change control, risk management, and ITIL-aligned practices)
Experience supporting distributed or field-based workforces

We offer our full-time and eligible part-time team members a comprehensive benefits package that's among the best in our industry. Benefits include medical, dental, and vision plans covering eligible team members and dependents, employee assistance programs, life insurance, disability, top-tier 401k with matching, tuition reimbursement, industry-leading referral program, and generous paid time off.

Middlesex provides equal employment opportunities to all team members and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status, or other characteristics protected by law.

PI2100ad8a5a57-1