Cloud Systems Engineer

The Cloud Systems Engineer is the operational backbone of our technology infrastructure - owning the cloud environment, hardening our security posture, ensuring end users have the responsive support they need, and automating the IT operational workflows that keep the organization running efficiently. We are a Microsoft Azure shop: our cloud infrastructure, security tooling, identity management, device management (Microsoft Intune across iOS, Android, and Windows 11), and operational platforms are built on the Microsoft ecosystem, and deep comfort with that stack is foundational to success in this role. The Data & Analytics Engineer owns data platform AI agents; this role owns the secure, stable infrastructure those tools run on - and the IT operations automation layer that sits alongside it. The ideal candidate is strong in Azure and Intune, security-aware enough to build defensively and act on alerts from our managed security partner, and has a genuine bias toward automating anything repetitive. They take pride in running a tight, well-documented environment.

Key Responsibilities

Cloud Infrastructure

• Design, implement, and manage cloud infrastructure on Microsoft Azure to ensure security, scalability, and cost-efficiency - Azure is our primary and preferred cloud platform
• Maintain cloud environments with high availability, performance monitoring, and proactive optimization
• Lead cloud migrations, containerization efforts (Docker/Kubernetes), and CI/CD pipeline management
• Manage cloud costs, resource tagging, and rightsizing initiatives
• Provision and maintain Azure infrastructure supporting AI agent workloads in partnership with the Data & Analytics Engineer - including networking, access controls, and cost management for those environments
• Collaborate with the Data & Analytics Engineer on shared Azure infrastructure needs

Cybersecurity

• Own the organization's security posture: endpoint protection, identity management, MFA enforcement, and Zero Trust principles
• Administer Microsoft Intune as our mobile device management (MDM) platform - managing enrollment, compliance policies, configuration profiles, and app deployment across iOS, Android, and Windows 11 devices
• Enforce conditional access policies and device compliance requirements through Intune and Microsoft Entra ID to protect organizational resources
• Manage patch cycles, access reviews, and routine security hygiene across the environment - our managed security partner handles deep monitoring, you handle the follow-through
• Partner with our managed security provider (e.g., CrowdStrike, Rapid7, or equivalent MDR vendor) as the internal point of contact - receive and triage alerts, coordinate remediation, and ensure findings are resolved, closed, and documented in a timely manner
• Maintain security configurations, access control documentation, and incident response procedures - and support basic security awareness across the organization
• Ensure compliance with HIPAA, ISO 13485, and FDA regulatory frameworks as they apply to IT infrastructure, data handling, and system controls in a biomedical environment

IT Operations Automation

• Build and maintain Power Automate flows and scripts that automate IT operational workflows - including employee onboarding/offboarding, access provisioning, device setup notifications, and license management
• Automate ticket routing, escalation logic, and recurring maintenance tasks within the help desk and IT operations layer
• Identify and eliminate manual, repetitive IT processes through scripting (PowerShell, Python) or low-code automation tooling
• Maintain clear documentation and ownership of all IT operations automations - distinct from data platform automations owned by the Data & Analytics Engineer

Help Desk & Ticketing Operations

• Oversee the help desk ticketing system: triage, escalation, SLA management, and resolution tracking
• Support end users across networking, desktop, mobile, and cloud access issues - including Intune-managed device troubleshooting and enrollment support
• Build and maintain a self-service knowledge base to reduce repeat ticket volume
• Identify patterns in ticket data to drive proactive infrastructure and process improvements

Do you have experience in iOS?