BHG FinancialRemote
Senior Cloud Infrastructure Engineer
United States
Full-time
4 days ago
H1B Sponsor Likely
Key skills
Azure infrastructure servicesLinux systems RHELLinux systems UbuntuVMware vSphereVMware ESXiVMware vCenterInfrastructure as Code (IaC)TerraformActive DirectoryMicrosoft 365ExchangePure StorageDell PowerProtectSFTP solutionsPowerShellBashAnalytical skillsProblem-solving skillsTeam playerPythonAzureAzure ADEntra ID
About this role
BHG Financial is a leader in the financial services space, dedicated to helping professionals and businesses succeed through innovative financial solutions. They are seeking a Senior Cloud Infrastructure Engineer to manage and optimize enterprise infrastructure, focusing on automation, reliability, and security in hybrid environments.
Responsibilities:
- Administer and maintain Active Directory, including Group Policy, DNS, DHCP, user and group management, and security configurations
- Administer and support enterprise Linux systems, (Red Hat Enterprise Linux (RHEL) and Ubuntu) including system configuration, patching, performance tuning, and troubleshooting
- Manage and optimize VMware environments, including vSphere, ESXi, and vCenter
- Maintain and troubleshoot Pure Storage Arrays, ensuring optimal performance, resiliency, and data availability
- Oversee Dell PowerProtect backup systems, including backup architecture, policy management, data recovery, and disaster recovery planning
- Administer and support Microsoft 365 services, including tenant configuration, licensing, service health monitoring, and platform governance
- Manage and support Exchange, including mail flow, connectors, transport rules, retention policies, and advanced troubleshooting
- Administer and maintain Mimecast for email security, archiving, and continuity, including policy configuration, threat remediation, and mail flow troubleshooting
- Design, create, and administer secure file transfer (SFTP) solutions, including managed file transfer platforms such as GoAnywhere, supporting internal and external integrations
- Design, deploy, and maintain Azure infrastructure services, including virtual machines, networking, storage, identity integration, and supporting platform services
- Implement security best practices across Windows and Linux systems (RHEL and Ubuntu), Active Directory, Microsoft 365, Exchange, Mimecast, virtualization, storage, backup platforms, file transfer systems, and Azure infrastructure
- Perform and oversee monthly patching for all Windows and Linux servers, including planning, scheduling, execution, validation, and remediation of patching failures to ensure system stability and security compliance
- Perform environment updates and vulnerability remediation using tools such as Tanium and native platform tooling
- Ensure compliance with internal security standards and industry regulations
- Monitor system, platform, and security logs and respond to security incidents as needed
- Ensure secure configuration, encryption, auditing, and access controls for messaging and file transfer platforms
- Proactively monitor system and platform performance, capacity planning, and resource utilization across on-prem and Azure environments
- Monitor health and reliability of Microsoft 365, Exchange, Mimecast, and file transfer platforms
- Troubleshoot complex infrastructure, messaging, and integration issues; diagnose root causes and implement durable, scalable solutions
- Work closely with internal teams to optimize infrastructure platforms for scalability, resilience, and business needs
- Participate in Cloud Engineering On-Call Rotation
- Lead infrastructure and platform projects, including system upgrades, migrations, cloud adoption initiatives, and new deployments
- Develop and maintain standard operating procedures (SOPs) and technical documentation
- Automate routine and repeatable tasks using PowerShell, Bash, Python, or similar automation tools, including automation related to infrastructure operations, messaging platforms, and file transfer integrations
- Partner with engineering, security, and application teams to improve reliability, security posture, and operational efficiency
Requirements:
- 5+ years of experience in enterprise infrastructure engineering within hybrid on‑prem and Azure environments
- Strong expertise in Windows Server and Active Directory administration
- Hands‑on experience administering Linux systems (RHEL and Ubuntu)
- Strong experience with VMware (vSphere, ESXi, vCenter)
- Experience managing Pure Storage or equivalent enterprise storage platforms
- Hands‑on experience with Dell PowerProtect or comparable enterprise backup solutions
- Experience administering Microsoft 365 and Exchange
- Experience supporting Mimecast or similar enterprise email security and archiving platforms
- Experience designing and administering SFTP and managed file transfer platforms (e.g., GoAnywhere)
- Strong understanding of Azure infrastructure services, including compute, storage, networking, and identity
- Strong scripting and automation skills (PowerShell and Bash/Python)
- Excellent troubleshooting, analytical, and problem‑solving skills
- Relevant certifications such as Azure Administrator, VCP, RHCSA/RHCE, Microsoft 365, or messaging/security platform certifications
- Experience with hybrid identity (Azure AD / Entra ID), Tanium, and modern access management
- Experience with infrastructure automation, infrastructure‑as‑code concepts, and large‑scale platform operations