Cloud Infrastructure Engineer - FT

If you are looking for employment with a purpose where you can help improve the daily lives of the members of your community, then consider a career with Pioneer Human Services!

We are currently looking for a Cloud Infrastructure Engineer with a passion for human services.  This is an exciting opportunity to be involved with an organization focused on racial justice, second opportunities, diversity, equity and inclusion.

WHO WE ARE
We empower justice-involved individuals to overcome adversity and reach their full potential.

For over 60 years, we have proudly serviced our clients with professionalism and empathy. We are a nationally recognized non-profit with 50+ locations across Washington state that provides a chance for change to over 3,000 people on any given day.

WHAT YOU'LL DO

We are seeking a results-driven and highly skilled Cloud Infrastructure Engineer with a deep understanding of Azure Cloud, hybrid enterprise environments, and modern network and security technologies. The ideal candidate will play a critical role in PHS’s digital transformation by architecting resilient cloud solutions, optimizing hybrid connectivity, and ensuring security compliance aligned to frameworks such as CMMC.

You will be instrumental in integrating Azure Landing Zone architecture, Microsoft 365 security layers, Intune and Entra ID, and leading automation for infrastructure deployment and operations. This role also requires proactive support for infrastructure operations via SysAid, robust backup and DR planning with Veeam, and maintaining service uptime across hybrid domains. This includes proficiency in VMware and OS like Windows Server.

PRIMARY/ESSENTIAL DUTIES AND RESPONSIBILITIES:

• Azure Cloud Infrastructure & Governance
• Design, build, and manage enterprise-ready Azure Landing Zones, incorporating scalability, security, and operational best practices.
• Maintain and optimize Azure Virtual Networks (VNets), subnets, NSGs, route tables, and enforce network segmentation policies.
• Support Azure Firewall and Check Point Firewall integration for enhanced micro-segmentation and traffic control.
• Implement policy-as-code using tools like Bicep, Terraform, or ARM templates to automate deployments and infrastructure governance.
• Collaborate with security teams to implement Microsoft Defender for Cloud, Azure Security Center, and Microsoft Purview for compliance enforcement.
• Hybrid Identity & Access Control
• Lead configuration and synchronization of Entra ID (Azure AD) with on-prem Active Directory using Azure AD Connect.
• Administer Conditional Access policies, MFA, and SSO integration for SaaS and internal platforms.
• Drive Identity Governance and enforce role-based access control (RBAC) aligned to least privilege principles.
• Endpoint & Configuration Management
• Manage Intune for endpoint lifecycle, ensuring configuration compliance, patching, and application deployments across mobile and desktop platforms.
• Support co-management with SCCM (if applicable) for hybrid environments.
• SD-WAN, Networking & Security
• Architect and support FortiGate-based SD-WAN deployments across 30+ remote sites, integrating with ExpressRoute, MPLS, and VPN solutions.
• Administer IPsec S2S tunnels, DNS-layer security using Cisco Umbrella, and Azure Sentinel integration for advanced threat detection.
• Microsoft 365, Exchange, & Compliance
• Support Exchange Online and manage ongoing hybrid email migration, including SPF, DKIM, and DMARC.
• Implement DLP, Sensitivity Labels, and Retention Policies to support data governance.
• Administer Microsoft Defender for Office 365 and mail security filtering tools.
• Backup & Resiliency
• Implement and maintain Veeam Backup & Replication for both on-prem and cloud workloads, including M365 backup.
• Participate in DR testing, BC/DR planning, and enforce site resiliency standards.
• Infrastructure Operations & Incident Management
• Manage incidents through SysAid, maintain SLAs, perform root cause analysis, and contribute to incident resolution and knowledgebase.
• Configure and support SolarWinds, performance monitoring tools, and log aggregation platforms.
• Security Incident Management
• Monitor and respond to security incidents across infrastructure, cloud, and endpoints.
• Perform root cause analysis and implement corrective and preventive actions (CAPA) for all security breaches.
• Support and standardize physical security systems and user access devices in coordination with vendors and security teams.
• Change Management & Documentation
• Participate in and enforce the Change Management Process, ensuring all changes are documented, peer-reviewed, approved, and communicated.
• Maintain comprehensive documentation for all configurations, deployments, procedures, and incident response activities.
• Conduct regular audits to ensure compliance with PHS policy and industry standards.
• Mentorship & Leadership
• Serve as a senior technical resource for junior engineers and Network Administrator I personnel.
• Provide guidance, mentorship, and structured learning opportunities.
• Foster a collaborative team environment and encourage knowledge sharing and continuous professional growth.
• Compliance & Continuous Improvement
• Ensure infrastructure aligns with regulatory frameworks such as CMMC, NIST 800-171, and HIPAA.
• Continuously evaluate and improve cloud and infrastructure operations by tracking emerging technologies and best practices.
• Collaborate with the InfoSec team on audit readiness, control enforcement, and risk mitigation strategies.
• Physical & Peripheral Device Management
• Configure, monitor, and maintain multi-function printers, print servers, and other network-connected peripherals.
• On-Prem Infrastructure Support for PHS
• Maintain and support a VMware-based virtualization environment hosting critical infrastructure such as file servers, VOIP systems (Mitel), domain controllers (DCs), DHCP servers, Epicor application servers, SQL databases, and additional line-of-business systems.
• Monitor host and VM performance, ensure capacity planning, and perform routine maintenance and patching across all virtual workloads.
• Manage physical infrastructure at PHS data centers, including storage arrays, UPS systems, and physical networking equipment.
• Troubleshoot VM failures, network issues, and storage latency to ensure high availability of services like file shares, authentication, VOIP, and application delivery.
• Coordinate lifecycle management and refresh planning of physical hosts and network-connected infrastructure in alignment with IT asset policies.
• Implement and support backup strategies for virtualized workloads, ensuring RTO/RPO targets and compliance with disaster recovery policies.
• Collaborate with Operations and Facilities for on-site support, cabling, power management, and access controls to sensitive equipment.
• Provide escalation support for infrastructure-related incidents reported via SysAid, working closely with Help Desk and NOC teams.
• Assist in modernization planning, including phased workload migrations to Azure, system decommissioning, and cloud-first architecture transitions.

Pioneer Human Service Expectations:

• Represent the company Core Values, department, and self by maintaining a high degree of personal. professionalism; by conducting business with strict honesty and fairness; by avoiding all deception and trickery; and by dealing fairly with employees, customers, and competitors.
• Be aware of and ensure compliance with all Company requirements and procedures and follow requirements laid out in the Company’s Business Management System.
• Accept responsibility for mentorship and guidance of new and support employees; embrace and participate in the company’s Core Values and Mission programs.
• Maintain a high level of self-awareness of personal skills and abilities and notify supervision of any training or assistance needed.
• All other duties as assigned and required. Duties, responsibilities, and activities may change at any time with or without notice.

KNOWLEDGE, SKILLS, AND ABILITIES:

• Strong knowledge of IT infrastructure, networking, security, cloud and software applications relevant to the Pioneer industries, including manufacturing, healthcare and social services.
• Excellent communication, organizational, time management, project management and customer service skills.
• Deep understanding of the relationship between network, data and infrastructure environments.
• Proficient in current Microsoft 365 and Azure, Office, PowerPoint, Visio and SharePoint. Remote
  management services, diagnostic tools and distributed management tools.

QUALIFICATIONS:
REQUIRED

• Bachelor's degree in Information Technology Computer Science, and/or 5+ years equivalent work experience as a Cloud Infrastructure Engineer.
• 5+ years of experience in cloud infrastructure, with deep focus on Azure.
• Hands-on experience with SD-WAN, Cisco Umbrella, IPsec VPNs.
• Knowledge of Azure AD/Entra ID, Intune, Exchange Online, and Microsoft 365 Security & Compliance.
• Experience managing hybrid VMware environments and integrating with Azure workloads.
• Strong proficiency in Cloud Backup tools, Ticketing Systems, and automation tools like Terraform, Bicep, or PowerShell DSC.
• Understanding of compliance frameworks such as CMMC, NIST 800-171.
• 5+ years’ experience with the current Microsoft Server OS and Microsoft Exchange.
• Advanced administration skills using Microsoft Server and Microsoft Exchange, including Active Directory, Group Policy, DNS, DHCP, VPN.
• Working knowledge of VMWare technology and virtualization.
• Experience working with phone systems, including Cloud VOIP.

PREFERRED/DESIRABLE

• Microsoft Certified: Azure Solutions Architect Expert, Security Engineer Associate, or equivalent.
• Experience leading infrastructure migrations, implementing SASE, or ZTA architectures.
• Familiarity with SolarWinds, or other IT monitoring platforms.
• A strong educational background on data security and compliance, Network+, CCNA certifications.

What we offer

At Pioneer Human Services, we genuinely care about our employees' well-being. We offer competitive pay and a comprehensive benefits package designed to support your health, financial security, and work-life balance—so you can thrive both on and off the job. Employees working a minimum of 30 hours per week on a regular basis are eligible to participate the first of the month following 30 days of full-time employment in:

• Medical
• Flexible spending
• Dental

• Vision coverage

After 60 days of full-time employment coverage for

• Life,
• AD&D, and disability

Other benefits include:

• Dependent Daycare flexible spending. 
• Tuition assistance program: Pioneer pays 100% of a bachelor's degree tuition and 50% for graduate programs. Available for full-time status employees after 3 months of employment.
• Retirement plan: Pioneer contributes 3.5% of an employee's annual compensation into retirement plans. An additional 3.5% match is offered to those who contribute 6% on their own.
• Employee recognition programs: gift cards, additional time off, weekend getaways and more.
• Public transportation discount.
• Employee assistance program (EAP).

EEO

Pioneer human services is an equal opportunity employer of minorities/women/individuals with disabilities/protected veterans and does not unlawfully discriminate under federal, state, or local laws. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, or protected veteran status. EEO is the law poster EEO is the law poster supplement 

Pioneer Human Services is a Drug-Free Company

Pioneer Human Services is a drug free company. Pioneer’s existing drug-free workplace policy prohibits the use of marijuana, including medical marijuana, and complies with Washington law. As such, this position is subject to drug testing during employment, to include testing for marijuana