Systems Engineer III (Full-Time)

The Iowa Clinic
West Des Moines, United States of America
30 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate

Job location

West Des Moines, United States of America

Tech stack

Application Lifecycle Management
Systems Engineering
Azure
Microsoft Online Services
Identity and Access Management
Image Management
Virtual Desktops
Platform as a Service (PAAS)
Powershell
Zero Trust Network Access
Automatic Programming
Microsoft InTune
Information Technology
Deployment Automation
Bicep
CIS Benchmarks
Terraform

Job description

Looking for a career where you love what you do and who you do it with? You're in the right place.

Healthcare here is different - we're locally owned and led by our physicians, and all decisions arealwaysmade right here in Central Iowa.

By working at The Iowa Clinic, you'll get to make a difference while seeing a difference in our workplace. Because as one clinic dedicated to exceptional care, we're committed to exceeding expectations, showing compassion and collaborating to provide the kind of care most of us got into this business to deliver in the first place.

Think you've got what it takes to join our TIC team? Keep reading…

A day in the life…

Wondering what a day in the life of System Engineer III at The Iowa Clinic might look like?

  • Own the architecture and strategic direction of the Microsoft cloud platform, including Entra ID, Intune, Autopilot, Azure Virtual Desktop, and Azure IaaS/PaaS, ensuring alignment with organizational goals and industry standards.

  • Lead infrastructure modernization projects from initiation through delivery, including scope definition, resource planning, risk management, stakeholder communication, and post-implementation review.

  • Design and govern Entra ID identity architecture, including zero trust principles, conditional access frameworks, Privileged Identity Management, and cross-tenant or hybrid identity scenarios.

  • Define and maintain Intune standards for endpoint configuration, compliance, security baselines, and application lifecycle, and drive adoption of modern device management across the organization.

  • Own the Azure Virtual Desktop platform architecture, including host pool topology, image management strategy, FSLogix configuration, and scaling policies aligned to clinical workflow requirements.

  • Govern Azure IaaS and PaaS resource architecture, including subscription design, naming conventions, tagging standards, policy enforcement via Azure Policy, and cost management frameworks.

  • Develop and maintain advanced PowerShell and infrastructure-as-code automation using tools such as Azure Bicep or Terraform to standardize deployments and reduce manual configuration drift.

  • Serve as the senior escalation point for complex infrastructure incidents, driving resolution and leading post-incident reviews that produce actionable improvements.

  • Evaluate new Microsoft cloud capabilities, licensing changes, and security updates as they are released, and bring forward clear recommendations on adoption timing and implementation approach.

  • Maintains confidentiality of all patient and financial information in accordance with HIPAA and organizational policy.

Requirements

  • Bachelor's degree in Information Technology, Computer Science, or a related field, or equivalent work experience with demonstrated technical leadership in enterprise cloud infrastructure., + 5 or more years of hands-on infrastructure engineering experience, with at least 2 years focused on Microsoft cloud platforms including Entra ID, Intune, and Azure.

  • Demonstrated experience owning platform architecture decisions and delivering infrastructure projects end to end.

Apply for this position