Senior Hybrid Infrastructure Engineer

WHAT YOU’LL DO

• Manage and maintain core Microsoft infrastructure services including Windows Server,

  Active Directory, DNS, DHCP, and file services; working knowledge of Linux; design and implement enhancements and dependent solutions as the environment evolves toward a

  unified hybrid infrastructure model.

• Administer, support, enhance, and implement new solutions for hypervisor and hyperconverged environments including Hyper-V and Azure Local; manage clustering and high availability configurations across both platforms.

• Administer and enhance storage platform configurations including NetApp SAN and HPE Nimble; leverage NetApp Cloud Insights for storage and compute monitoring.

• Administer existing SQL Server Enterprise platforms including high availability and disaster recovery configurations; design and implement new solutions spanning on-premises and Azure SQL services, with a horizon toward enhancing and extending on-premises clustering to Azure SQL instances as part of a broader hybrid database strategy.

• Administer and maintain data protection and recovery platforms including Rubrik Security Cloud, on-premises CDM appliances, and Azure Site Recovery as part of an integrated hybrid DR strategy.

• Administer and enhance security platforms including Tanium endpoint security and Microsoft Defender for Cloud; leverage Arc-enabled capabilities to extend security visibility and continuously improve security posture across hybrid environments.

• Manage and maintain certificate lifecycle and PKI infrastructure using Palo Alto certificate management; support public certificate management through DigiCert and assist in the design and delivery of enhanced certificate solutions as part of the broader hybrid infrastructure strategy.

• Administer and enhance infrastructure monitoring, alerting, and observability platforms including New Relic and Azure Monitor; respond to alerts and incidents while driving improvements to monitoring coverage and capabilities as legacy tools like SCOM are

  evaluated and replaced as part of the hybrid strategy.

• Administer, enhance, and where needed design and implement new solutions for secure file transfer and data services including Cerberus SFTP and associated file service

  platforms.

• Design, deliver, and maintain hybrid infrastructure solutions across Azure and Azure Arc environments using established IaC practices with Terraform, Terraform Cloud, and GitHub; implement supporting components including managed identities, Key Vault,

  diagnostic logging, and NSGs in compliance with established policies and standards.

• Contribute to the design and delivery of modular, self-service infrastructure solutions across the hybrid ecosystem that enable application teams and end users to consume services seamlessly across on-premises and cloud environments.

• Leverage AI-assisted workflows and tooling as an integral part of solution design, delivery, and maintenance — including code generation, automation, and documentation; contribute to the development of AI-driven engineering workflows including agentic capabilities as the hybrid infrastructure strategy evolves.

• Collaborate with application teams, security, and operations to deliver well-architected,

  production-ready solutions across both environments.

REQUIRED SKILLS & EXPERIENCE

• 5+ years of hands-on experience managing enterprise on-premises infrastructure including Windows Server, Active Directory, DNS, DHCP, Hyper-V, and clustering.

• Experience with hyperconverged infrastructure solutions including Azure Local or equivalent.

• 3+ years of hands-on experience with Microsoft Azure working across compute, storage, networking, and governance within existing enterprise environments; working knowledge

  of Azure Arc and Azure Policy sufficient to build and deliver compliant hybrid

  infrastructure solutions.

• Solid understanding of core networking concepts including TCP/IP, DNS, VLANs, subnetting, and firewall rules sufficient to design and deliver hybrid infrastructure solutions alongside a dedicated network team.

• Demonstrated experience with enterprise storage platforms including NetApp SAN, HPE Nimble, or equivalent enterprise storage solutions.

• Experience managing SQL Server Enterprise environments including high availability and disaster recovery configurations.

• Experience with data protection and recovery platforms including Rubrik Security Cloud or equivalent; familiarity with Azure Site Recovery as part of a hybrid DR strategy.

• Experience with endpoint security and security posture tooling including Tanium and Microsoft Defender for Cloud.

• Experience with certificate lifecycle and PKI management in an enterprise environment.

• Experience with infrastructure monitoring and observability platforms including New Relic and Azure Monitor.

• Experience with Terraform and GitHub as part of an IaC-based delivery workflow.

• Experience with AI-assisted tooling in engineering workflows — code generation, automation, or documentation.

• Strong communication skills and the ability to translate business needs into technical solutions across both on-premises and cloud environments.

NICE TO HAVE

• Experience with advanced Azure networking design including VNet architecture, ExpressRoute, and Private Link.

• Experience architecting and designing hyperconverged infrastructure solutions including Azure Local or equivalent.

• Experience building and managing CI/CD pipelines including pipeline design, workflow automation, and pipeline-as-code practices.

• Proficiency with Terraform module development, state management, and workspace organization using Terraform Cloud.

• Azure certifications (AZ-104, AZ-305, AZ-500, AZ-800, AZ-801).

• Familiarity with Azure PaaS services including App Services, Functions, API Management, and Front Door as part of end-to-end solution delivery.

• Experience with platform engineering practices and methodologies — building or consuming internal developer platforms and self-service infrastructure catalogs.

Salary Range

$98,040.00 - $154,800.00 USD (Salary)

• Please note that the salary information provided herein is base pay only (gross); it does not include other forms of compensation which may or may not apply to this specific position, namely, performance-based bonuses, benefits-related payments, or other general incentives - none of which are guaranteed, may be subject to specific eligibility requirements, and are wholly within the discretion of Astreya to remit.
• Further, the salary information noted above is a range that consists of a minimum and maximum rate of pay for this specific position. Where an applicant or employee is placed on this range will depend and be contingent on objective, documented work-related considerations like education, experience, certifications, licenses, preferred qualifications, among other factors.

Astreya offers comprehensive benefits to all Regular, Full-Time Employees, including:

• Medical provided through UHC (PPO, HSA, Surest options) / Medical provided through Kaiser (HMO option only) for California employees only

• Dental provided through UHC

• Nationwide Vision provided by UHC

• Flexible Spending Account for Health & Dependent Care

• Pre-Tax Account for Commuter Benefit/Parking & Transit (location-specific)

• Continuing Education and Professional Development via various integrated platforms, e.g. Udemy and Coursera

• Corporate Wellness Program provided by Goomi Group

• Employee Assistance Program

• Wellness Days

  401k Plan

• Basic and Supplemental Life Insurance

• Short Term & Long Term Disability

• Critical Illness, Critical Hospital, and Voluntary Accident Insurance

• Tuition Reimbursement (available 6 months after start date, capped)

• Paid Time Off (accrued and prorated, maximum of 120 hours annually)

• Paid Holidays

• Any other statutory leaves, paid time, or other ancillary benefits required under state and federal law