About the Role
The Cloud Systems Engineer is the operational backbone of our technology infrastructure — owning the cloud environment, hardening our security posture, ensuring end users have the responsive support they need, and automating the IT operational workflows that keep the organization running efficiently. We are a Microsoft Azure shop: our cloud infrastructure, security tooling, identity management, device management (Microsoft Intune across iOS, Android, and Windows 11), and operational platforms are built on the Microsoft ecosystem, and deep comfort with that stack is foundational to success in this role. The Data & Analytics Engineer owns data platform AI agents; this role owns the secure, stable infrastructure those tools run on — and the IT operations automation layer that sits alongside it. The ideal candidate is strong in Azure and Intune, security-aware enough to build defensively and act on alerts from our managed security partner, and has a genuine bias toward automating anything repetitive. They take pride in running a tight, well-documented environment.
Responsibilities
Cloud Infrastructure
- Design, implement, and manage cloud infrastructure on Microsoft Azure to ensure security, scalability, and cost-efficiency — Azure is our primary and preferred cloud platform.
- Maintain cloud environments with high availability, performance monitoring, and proactive optimization.
- Lead cloud migrations, containerization efforts (Docker/Kubernetes), and CI/CD pipeline management.
- Manage cloud costs, resource tagging, and rightsizing initiatives.
- Provision and maintain Azure infrastructure supporting AI agent workloads in partnership with the Data & Analytics Engineer — including networking, access controls, and cost management for those environments.
- Collaborate with the Data & Analytics Engineer on shared Azure infrastructure needs.
Cybersecurity
- Own the organization’s security posture: endpoint protection, identity management, MFA enforcement, and Zero Trust principles.
- Administer Microsoft Intune as our mobile device management (MDM) platform — managing enrollment, compliance policies, configuration profiles, and app deployment across iOS, Android, and Windows 11 devices.
- Enforce conditional access policies and device compliance requirements through Intune and Microsoft Entra ID to protect organizational resources.
- Manage patch cycles, access reviews, and routine security hygiene across the environment — our managed security partner handles deep monitoring, you handle the follow-through.
- Partner with our managed security provider (e.g., CrowdStrike, Rapid7, or equivalent MDR vendor) as the internal point of contact — receive and triage alerts, coordinate remediation, and ensure findings are resolved, closed, and documented in a timely manner.
- Maintain security configurations, access control documentation, and incident response procedures — and support basic security awareness across the organization.
- Ensure compliance with HIPAA, ISO 13485, and FDA regulatory frameworks as they apply to IT infrastructure, data handling, and system controls in a biomedical environment.
IT Operations Automation
- Build and maintain Power Automate flows and scripts that automate IT operational workflows — including employee onboarding/offboarding, access provisioning, device setup notifications, and license management.
- Automate ticket routing, escalation logic, and recurring maintenance tasks within the help desk and IT operations layer.
- Identify and eliminate manual, repetitive IT processes through scripting (PowerShell, Python) or low-code automation tooling.
- Maintain clear documentation and ownership of all IT operations automations — distinct from data platform automations owned by the Data & Analytics Engineer.
Help Desk & Ticketing Operations
- Oversee the help desk ticketing system: triage, escalation, SLA management, and resolution tracking.
- Support end users across networking, desktop, mobile, and cloud access issues — including Intune-managed device troubleshooting and enrollment support.
- Build and maintain a self-service knowledge base to reduce repeat ticket volume.
- Identify patterns in ticket data to drive proactive infrastructure and process improvements.
Qualifications
- Bachelor’s degree in Computer Science, Information Technology, or a related field (or equivalent experience).
- 3+ years of cloud systems or infrastructure engineering experience with Microsoft Azure — Azure is our environment and candidates should bring demonstrable Azure depth, not just general cloud familiarity.
- Hands-on experience administering Microsoft Intune for MDM/MAM across iOS, Android, and Windows devices — including compliance policies, configuration profiles, conditional access, and app management.
- Hands-on experience managing SSO through Microsoft Entra ID (Azure AD) — including application federation, SAML/OIDC integrations, and conditional access policies.
- Security-aware approach to infrastructure — you understand endpoint security, identity/access management, and common threat vectors well enough to build defensively and respond to alerts confidently.
- Experience managing a help desk ticketing system and supporting end users in a fast-paced environment.
- Hands-on experience building automations using Power Automate, PowerShell, or equivalent tooling for IT operational workflows.
- Familiarity with containerization (Docker, Kubernetes) and CI/CD pipelines.
- Strong communication skills — able to translate technical concepts to non-technical stakeholders.
Required Skills
- Microsoft certifications: Azure Administrator (AZ-104), Azure Security Engineer (AZ-500), Microsoft 365 Certified: Endpoint Administrator (MD-102), or Microsoft Intune Administrator.
- Experience with Microsoft Entra ID (formerly Azure AD) for identity, conditional access, and device compliance.
- Familiarity with managed detection and response (MDR) platforms or SIEM tooling (CrowdStrike, Microsoft Sentinel, Rapid7, or equivalent) — experience working alongside an MSSP or MDR provider is a plus.
- Knowledge of HIPAA, ISO 13485, or FDA regulated-environment compliance requirements and how they intersect with IT infrastructure and security controls.
- Experience with monitoring and observability tools (Azure Monitor, Grafana, Prometheus, or ELK stack).
- Understanding of DevOps/GitOps practices.
EEO
Regenesis is an Equal Opportunity Employer. We do not discriminate against any employee or applicant based on race, color, national origin, gender, gender identity, sexual orientation, age, disability, or any other characteristic protected by federal, state, or local law.
