About Eleven Recruiting
We are a specialized technology staffing agency supporting professional and financial services companies. Why do we stand out in technology staffing? We listen and act as advisors for our candidates on how they can best add value, find interesting projects, and pave a path for career advancement. We advocate for the best pay, diversity in tech, and the best job fit for every candidate we place.
Our client, an investment firm, is seeking a Cloud Infrastructure Engineer to join their team in Menlo Park, CA or New York, NY!
The ideal candidate will design, build, and manage a secure, compliant, and scalable technology environment across client's cloud and on-premises systems. This individual will take ownership of our Azure landing zone, network infrastructure, endpoint security, and vendor relationships, ensuring that our environment meets the highest standards for reliability, performance, and compliance.
Responsibilities:
Cloud Infrastructure & Automation
- Architect, build, and maintain a secure, compliant Azure Landing Zone following industry and regulatory best practices.
- Develop and maintain Infrastructure as Code (IaC) using Terraform, including reusable modules, pipelines, and security controls.
- Monitor, optimize, and support Azure resources across compute, networking, identity, storage, and security services.
- Implement automated guardrails, policies (Azure Policy), RBAC structures, and governance frameworks.
Networking
- Design, deploy, and manage the corporate network stack, including Meraki switches, routers, wireless access points, SD-WAN, and firewalls.
- Monitor and optimize network performance, ensuring high availability and resiliency.
- Lead upgrades, configuration management, and lifecycle management for all network components.
- Maintain secure connectivity between cloud and on-prem environments (VPN, ExpressRoute, etc.).
Security Engineering & Operations
- Manage and administer EDR/MDR solutions, including policy creation, tuning, and response workflows.
- Implement and maintain DLP controls across endpoints, cloud platforms, and productivity tools.
- Partner with internal stakeholders and vendors to ensure alignment with cybersecurity best practices and compliance requirements.
- Support incident response activities and drive post-incident remediation and improvements.
Vendor & Partner Management
- Serve as the primary technical liaison for managed detection & response (MDR/MTR) providers, networking partners, and other infrastructure vendors.
- Evaluate vendor performance, SLAs, and service quality; drive continuous improvement in vendor-delivered services.
- Oversee procurement, renewals, and technology roadmap planning for infrastructure tooling and services.
General Infrastructure Responsibilities
- Support Windows and/or Linux server environments as needed.
- Contribute to IT documentation, runbooks, architecture diagrams, and change management.
- Participate in on-call rotations or after-hours maintenance windows when required.
- Ensure infrastructure adheres to regulatory and internal compliance requirements (e.g., SOC, ISO, HIPAA—customize as needed)
Qualifications:
Required
- 5+ years of hands-on experience in infrastructure engineering, cloud engineering, or a similar role.
- Proven experience designing and managing Azure environments, ideally using Azure Landing Zone frameworks.
- Strong experience with Terraform and IaC best practices (modular design, versioning, CI/CD integration).
- Hands-on experience with Meraki networking (switches, routers, firewalls) and general network engineering (DNS, DHCP, routing, VLANs, VPNs).
- Practical knowledge of EDR/MDR technology, endpoint security policies, and DLP tools.
- Familiarity with identity management and Zero Trust principles (Azure AD/Microsoft Entra ID).
- Demonstrated ability to manage vendor relationships and evaluate security/infra tooling.
- Excellent documentation, communication, and cross-team collaboration skills.
Preferred
- Certifications in Azure (AZ-104, AZ-305), security (e.g., Security+, CISSP), or networking (CCNA/Meraki).
- Experience with SIEM tools, SOAR workflows, or security operations.
- Experience with scripting languages (PowerShell, Python) for automation.
- Background in regulated industries (finance, healthcare, etc.) with strong compliance requirements.
Salary: $200,000 - $250,000
